CVE-2021-47820

MEDIUM

Ubee EVW327 - Cross-Site Request Forgery to Enable Remote Access

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2021-47820. PoCs published by lated.

AI-analyzed exploit summary This is a CSRF exploit targeting Ubee EVW327 routers, enabling remote access via port 8080 without user interaction. The HTML form submits a POST request to the router's management interface to enable remote access.

Description

Ubee EVW327 contains a cross-site request forgery vulnerability that allows attackers to enable remote access without user interaction. Attackers can craft a malicious webpage that automatically submits a form to change router remote access settings to port 8080 without the user's consent.

Exploits (1)

exploitdb WORKING POC
by lated · htmlwebappshardware
https://www.exploit-db.com/exploits/49920

This is a CSRF exploit targeting Ubee EVW327 routers, enabling remote access via port 8080 without user interaction. The HTML form submits a POST request to the router's management interface to enable remote access.

Classification
Working Poc 100%
Attack Type
Other
Complexity
Trivial
Reliability
Reliable
Target: Ubee EVW327
No auth needed
Prerequisites: Victim must visit the malicious HTML page while authenticated to the router's admin interface
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit, Third Party Advisory exploit
https://www.exploit-db.com/exploits/49920
Various Sources product
https://www.ubeeinteractive.com

Scores

CVSS v3 5.3
EPSS 0.0019
EPSS Percentile 8.3%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-352
Status published
Published Jan 16, 2026
Tracked Since Feb 18, 2026