First published: Tue Sep 01 2020(Updated: )
The affected product is vulnerable to cross-site request forgery, which may allow an attacker to modify different configurations of a device by luring an authenticated user to click on a crafted link on the N-Tron 702-W / 702M12-W (all versions).
Credit: ics-cert@hq.dhs.gov
Affected Software | Affected Version | How to fix |
---|---|---|
Redlion N-tron 702-w Firmware | ||
Redlion N-tron 702-w | ||
Redlion N-tron 702m12-w Firmware | ||
Redlion N-tron 702m12-w | ||
Red Lion N-Tron 702-W | ||
Red Lion N-Tron 702M12-W |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this vulnerability is CVE-2020-16208.
The severity of CVE-2020-16208 is critical, with a CVSS score of 8.8.
The affected product of CVE-2020-16208 is the Redlion N-tron 702-W and 702M12-W, all versions.
CVE-2020-16208 allows an attacker to modify configurations of the affected device by tricking an authenticated user into clicking on a crafted link.
Yes, there are known exploits of CVE-2020-16208. Please refer to the provided references for more information.