6.8
CVSSv2

CVE-2019-7391

Published: 21/03/2019 Updated: 29/03/2019
CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6
CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8
VMScore: 662
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Vulnerability Summary

ZyXEL VMG3312-B10B DSL-491HNU-B1B v2 devices allow login/login-page.cgi CSRF.

Vulnerability Trend

Affected Products

Exploits

# Exploit Title: Zyxel VMG3312-B10B DSL-491HNU-B1B v2 modem CSRF Exploit # Version: Zyxel VMG3312-B10B # Tested on : Parrot Os # Author: Yusuf Furkan # Twitter: h1_yusuf # CVE: CVE-2019-7391 # model name: DSL-491HNU-B1B v2 <html> <!-- CSRF PoC - generated by Yusuf --> <body> <script>historypushState('', '', '/')</ ...

Mailing Lists

Zyxel VMG3312-B10B DSL-491HNU-B1 V2 suffers from a cross site request forgery vulnerability ...