CVE-2013-3516
published 2019-11-13CVE-2013-3516: NETGEAR WNR3500U and WNR3500L routers uses form tokens abased solely on router's current date and time, which allows attackers to guess the CSRF tokens.
medium6.5CVSS 3.1
AVNACLPRNUIRSUCHINAN
NETGEAR WNR3500U and WNR3500L routers uses form tokens abased solely on router's current date and time, which allows attackers to guess the CSRF tokens.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| netgear | wnr3500l_firmware | — | — |
| netgear | wnr3500u_firmware | — | — |