CVE-2019-20071

MEDIUM WAF: Low
CVSS 6.5 Published: 2019-12-30
CWE-352

On Netis DL4323 devices, CSRF exists via form2logaction.cgi to delete all logs.

WAF Coverage Analysis

Cross-Site Request Forgery (CSRF) Low WAF Coverage

OWASP: A01:2021 Broken Access Control

Affected Software

VendorProductVersion
netis-systemsdl4343_firmware-

References

Back to CVE Database