CVE-2007-3787

CVE-2007-3787 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

The eSoft InstaGate EX2 UTM device does not require entry of the old password when changing the admin password, which might allow remote attackers to gain privileges by conducting a CSRF attack, making a password change from an unattended workstation, or other attacks.

Learn more about our Web Application Penetration Testing UK.