216.73.217.98

CVE-2024-40119

· Published 17/07/2024 20:15 · Modified 17/07/2024 20:15

Labels: CVE-2024-40119 2024-07-17CVE-2024-40119[email protected]

Essential information

Published
17/07/2024 20:15
Modified
17/07/2024 20:15
Author
Creator
CISA KEV
No
CWE

Description

Nepstech Wifi Router xpon (terminal) model NTPL-Xpon1GFEVN v.1.0 Firmware V2.0.1 contains a Cross-Site Request Forgery (CSRF) vulnerability in the password change function, which allows remote attackers to change the admin password without the user's consent, leading to a potential account takeover.

NVD status

Status
Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

References