CVE-2026-5572

MEDIUM

Technostrobe HI-LED-WR120-G2 cross-site request forgery

Title source: cna

Description

A security flaw has been discovered in Technostrobe HI-LED-WR120-G2 5.5.0.1R6.03.30. This affects an unknown function. Performing a manipulation results in cross-site request forgery. The attack can be initiated remotely. The exploit has been released to the public and may be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way.

References (4)

Scores

CVSS v3 4.3
EPSS 0.0001
EPSS Percentile 0.3%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

Details

CWE
CWE-352 CWE-862
Status published
Products (1)
Technostrobe/HI-LED-WR120-G2 5.5.0.1R6.03.30
Published Apr 05, 2026
Tracked Since Apr 05, 2026