CVE-2008-0524
Summary
| CVE | CVE-2008-0524 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2008-01-31 20:00:00 UTC |
| Updated | 2017-08-08 01:29:00 UTC |
| Description | Cross-site request forgery (CSRF) vulnerability in the management interface in multiple Yamaha RT series routers allows remote attackers to change password settings and probably other configuration settings as administrators via unspecified vectors. |
Risk And Classification
Problem Types: CWE-352
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Yamaha | Rt107e | All | All | All | All |
| Hardware | Yamaha | Rt107e | All | All | All | All |
| Hardware | Yamaha | Rt52pro | All | All | All | All |
| Hardware | Yamaha | Rt52pro | All | All | All | All |
| Hardware | Yamaha | Rt56v | All | All | All | All |
| Hardware | Yamaha | Rt56v | All | All | All | All |
| Hardware | Yamaha | Rt57i | All | All | All | All |
| Hardware | Yamaha | Rt57i | All | All | All | All |
| Hardware | Yamaha | Rt58i | All | All | All | All |
| Hardware | Yamaha | Rt58i | All | All | All | All |
| Hardware | Yamaha | Rt60w | All | All | All | All |
| Hardware | Yamaha | Rt60w | All | All | All | All |
| Hardware | Yamaha | Rt80i | All | All | All | All |
| Hardware | Yamaha | Rt80i | All | All | All | All |
| Hardware | Yamaha | Rta50i | All | All | All | All |
| Hardware | Yamaha | Rta50i | All | All | All | All |
| Hardware | Yamaha | Rta52i | All | All | All | All |
| Hardware | Yamaha | Rta52i | All | All | All | All |
| Hardware | Yamaha | Rta54i | All | All | All | All |
| Hardware | Yamaha | Rta54i | All | All | All | All |
| Hardware | Yamaha | Rta55i | All | All | All | All |
| Hardware | Yamaha | Rta55i | All | All | All | All |
| Hardware | Yamaha | Rtv700 | All | All | All | All |
| Hardware | Yamaha | Rtv700 | All | All | All | All |
| Hardware | Yamaha | Rtw65b | All | All | All | All |
| Hardware | Yamaha | Rtw65b | All | All | All | All |
| Hardware | Yamaha | Rtw65i | All | All | All | All |
| Hardware | Yamaha | Rtw65i | All | All | All | All |
| Hardware | Yamaha | Rtx1000 | All | All | All | All |
| Hardware | Yamaha | Rtx1000 | All | All | All | All |
| Hardware | Yamaha | Rtx1100 | All | All | All | All |
| Hardware | Yamaha | Rtx1100 | All | All | All | All |
| Hardware | Yamaha | Rtx1500 | All | All | All | All |
| Hardware | Yamaha | Rtx1500 | All | All | All | All |
| Hardware | Yamaha | Srt100 | All | All | All | All |
| Hardware | Yamaha | Srt100 | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| IBM X-Force Exchange | XF | exchange.xforce.ibmcloud.com | |
| FAQ for YAMAHA RT Series / Security | CONFIRM | www.rtpro.yamaha.co.jp | |
| JVN#88575577: 複数のヤマハルーター製品におけるクロスサイトリクエストフォージェリの脆弱性 | JVN | jvn.jp | |
| Yamaha RT Series Routers Cross-Site Request Forgery Vulnerability - Secunia Advisories - Vulnerability Intelligence - Secunia.com | SECUNIA | secunia.com | |
| Yamaha RT Series Routers Cross-Site Request Forgery Vulnerability | BID | www.securityfocus.com | |
| JVN:JVN#88575577 | MITRE | jvn.jp | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.