Netis WF2419 V2.2.36123 Devices Vulnerable to Cross-Site Request Forgery Attack: Address Reservation List Deletion

Netis WF2419 V2.2.36123 Devices Vulnerable to Cross-Site Request Forgery Attack: Address Reservation List Deletion

CVE-2018-6391 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

A cross-site request forgery web vulnerability has been discovered on Netis WF2419 V2.2.36123 devices. A remote attacker is able to delete Address Reservation List settings.

Learn more about our Web App Pen Testing.