cbcvebase.
CVE-2015-2048
published 2015-02-23

CVE-2015-2048: Cross-site request forgery (CSRF) vulnerability in D-Link DCS-931L with firmware 1.04 and earlier allows remote attackers to hijack the authentication of…

medium6.8CVSS 3.1
AVNACMAuNCPIPAP
Cross-site request forgery (CSRF) vulnerability in D-Link DCS-931L with firmware 1.04 and earlier allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.

Affected

2 ranges
VendorProductVersion rangeFixed in
dlinkdcs-931l_firmware<= 1.04
libsshlibssh>= 0 < 0.6.1-0ubuntu3.30.6.1-0ubuntu3.3

CVSS provenance

nvd6.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
osv7.5HIGH