CVE-2021-31659

More information about this CVE will likely be available in a few days.

Description

TP-Link TL-SG2005, TL-SG2008, etc. 1.0.0 Build 20180529 Rel.40524 is vulnerable to Cross Site Request Forgery (CSRF). All configuration information is placed in the URL, without any additional token authentication information. A malicious link opened by the switch administrator may cause the password of the switch to be modified and the configuration file to be tampered with.

Related CPE's

Could not find any relations

References

https://github.com/liyansong2018/CVE/tree/main/2021/CVE-2021-31659

http://tp-link.com

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics
Created by Yello
About Severity.io