Description
The portal on FiberHome Mobile WIFI Device Model LM53Q1 VH519R05C01S38 uses SOAP based web services in order to interact with the portal. Unauthorized Access to Web Services via CSRF can result in an unauthorized change of username or password of the administrator of the portal.
Exploits (1)
exploitdb
WORKING POC
by Ibad Shah · pythonwebappshardware
https://www.exploit-db.com/exploits/43460
Scores
CVSS v3
8.8
EPSS
0.0007
EPSS Percentile
21.6%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Details
CWE
CWE-352
Status
published
Products (1)
fiberhome/lm53q1_firmware
vh519r05c01s38
Published
Jan 12, 2018
Tracked Since
Feb 18, 2026