vendor:
TC1-450 Airtel Wireless Router
by:
SaMaN
5.5
CVSS
MEDIUM
Cross-Site Request Forgery (CSRF)
352
CWE
Product Name: TC1-450 Airtel Wireless Router
Affected Version From: TM4-0Q-020
Affected Version To: Not specified
Patch Exists: NO
Related CWE:
CPE: h:beetel:tc1-450
Platforms Tested: Not specified
2013
Beetel TC1-450 Airtel Wireless Router – Multiple CSRF Vulnerabilities
Attacker can easily change Wireless password, Reboot Router, Reset Router, Change Router's Admin Password by simply making the user visit a CSRF link.
Mitigation:
Upgrade to latest firmware version/ move to Beetle 450-TC2