CVE-2008-0524

high

Description

Cross-site request forgery (CSRF) vulnerability in the management interface in multiple Yamaha RT series routers allows remote attackers to change password settings and probably other configuration settings as administrators via unspecified vectors.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/40015

http://www.securityfocus.com/bid/27491

http://www.rtpro.yamaha.co.jp/RT/FAQ/Security/JVN88575577.html

http://secunia.com/advisories/28690

http://jvn.jp/jp/JVN%2388575577/index.html

Details

Source: Mitre, NVD

Published: 2008-01-31

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Severity: High

CVSS v3

Base Score: 8.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H