Cross-Site Request Forgery Vulnerabilities in D-Link DAP 1150
CVE-2014-3760

Currently unrated

Key Information:

Vendor
D-Link
Status
Dap 1150 Firmware
Dap 1150
Vendor
CVE Published:
16 May 2014

Summary

The D-Link DAP 1150 device with firmware version 1.2.94 is susceptible to multiple cross-site request forgery (CSRF) vulnerabilities that could allow remote attackers to hijack administrative authentication. Attackers may exploit these vulnerabilities to send unauthorized requests that can enable or disable the DMZ feature, or to manipulate URL-filter settings—potentially blocking access to critical online services.

References

http://seclists.org/fulldisclosure/2014/Apr/246
mailing-listx_refsource_FULLDISC
http://websecurity.com.ua/7112
x_refsource_MISC

Timeline

  • Vulnerability Reserved

  • Vulnerability published

.
🍪 This website uses cookies, like every other website on the internet 😕 By using our website, you consent to the use of cookies.