Cross-Site Request Forgery Vulnerabilities in DIGISOL DG-HR1400 Wireless Router
CVE-2017-6127
8.8HIGH
What is CVE-2017-6127?
The DIGISOL DG-HR1400 Wireless Router is susceptible to several cross-site request forgery vulnerabilities. These weaknesses enable remote attackers to compromise the authentication of administrators, executing unauthorized requests to the router's access portal. Exploiting these vulnerabilities may allow attackers to modify critical settings such as the SSID and Wi-Fi password, potentially leading to further security compromises. Crafted requests sent to form2WlanBasicSetup.cgi can trigger these issues, posing a significant risk to users.