CVE-2021-31152

HIGH

Multilaser Router AC1200 V02.03.01.45_pt - CSRF

Title source: llm

Description

Multilaser Router AC1200 V02.03.01.45_pt contains a cross-site request forgery (CSRF) vulnerability. An attacker can enable remote access, change passwords, and perform other actions through misconfigured requests, entries, and headers.

Exploits (1)

exploitdb WORKING POC

by Rodolfo Mariano · htmlwebappshardware

https://www.exploit-db.com/exploits/49775

View Code ZIP pw:eip

References (3)

[Exploit, Third Party Advisory, VDB Entry] http://packetstormsecurity.com/files/162258/Multilaser-Router-RE018-AC1200-Cross-Site-Request-Forgery.html

[Mailing List] http://seclists.org/fulldisclosure/2024/Mar/1

[Exploit, Third Party Advisory] https://www.youtube.com/watch?v=zN3DVrcu6Eg

Scores

CVSS v3 8.8

EPSS 0.0173

EPSS Percentile 82.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE

CWE-352

Status published

Products (1)

multilaser/ac1200_re018_firmware v02.03.01.45_pt

Published Apr 14, 2021

Tracked Since Feb 18, 2026