Sitecom WL-153 router firmware prior to 1.38 allows remote malicious users to bypass access restrictions and conduct unauthorized operations via a UPnP request with a modified InternalClient parameter, which is not validated, as demonstrated by using AddPortMapping to forward arbitrary traffic.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sitecom wl-153_router_firmware |
||
sitecom wl-153_router_firmware 1.31 |
||
sitecom wl-153 - |