CSRF Vulnerability in GS108Ev3 Firmware Version 2.06.10 and Earlier

CSRF Vulnerability in GS108Ev3 Firmware Version 2.06.10 and Earlier

CVE-2020-5641 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

Cross-site request forgery (CSRF) vulnerability in GS108Ev3 firmware version 2.06.10 and earlier allows remote attackers to hijack the authentication of administrators and the product's settings may be changed without the user's intention or consent via unspecified vectors.

Learn more about our User Device Pen Test.