CVE-2022-45674: CSRF
First published: Fri Dec 02 2022(Updated: )
Tenda AC6V1.0 V15.03.05.19 is vulnerable to Cross Site Request Forgery (CSRF) via function fromSysToolReboot.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Tenda Ac6 Firmware | =15.03.05.19 | |
| Tenda AC6 | =1.0 | |
| All of | ||
| Tenda Ac6 Firmware | =15.03.05.19 | |
| Tenda AC6 | =1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of Tenda AC6V1.0 V15.03.05.19?
The vulnerability ID of Tenda AC6V1.0 V15.03.05.19 is CVE-2022-45674.
What is the severity of CVE-2022-45674?
The severity of CVE-2022-45674 is medium with a CVSS score of 6.5.
What is Cross Site Request Forgery (CSRF)?
Cross Site Request Forgery (CSRF) is a type of attack that tricks the victim into making a specific request without their consent or knowledge.
How does the vulnerability CVE-2022-45674 affect Tenda AC6V1.0 V15.03.05.19?
The vulnerability CVE-2022-45674 allows an attacker to perform Cross Site Request Forgery (CSRF) attacks on Tenda AC6V1.0 V15.03.05.19 via the function fromSysToolReboot.
How can I fix the vulnerability CVE-2022-45674 in Tenda AC6V1.0 V15.03.05.19?
To fix the vulnerability CVE-2022-45674 in Tenda AC6V1.0 V15.03.05.19, it is recommended to apply the latest firmware update provided by the vendor.
- collector/nvd-index
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/severity
- agent/weakness
- agent/first-publish-date
- agent/description
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/last-modified-date
- agent/author
- agent/event
- agent/tags
- agent/softwarecombine
- agent/source
- vendor/tenda
- canonical/tenda ac6 firmware
- version/tenda ac6 firmware/15.03.05.19
- canonical/tenda ac6
- version/tenda ac6/1.0