CNNVD-202512-4285 Information
Dec 24, 2025
cve
CNNVD ID
CNNVD-202512-4285
Related CVE
- CNNVD Published: 2025-12-24
Description (Chinese)
Ecessa WANWorx WVR-30是美国Ecessa公司的一个软件定义广域网设备。 Ecessa WANWorx WVR-30 10.7.4之前版本存在跨站请求伪造漏洞,该漏洞源于容易受到跨站请求伪造攻击,可能导致执行管理操作。
Description (English)
Ecossa WanWorkx WVR-30 is a software definition wide area network (WAN) device of the United States company Ecossa. Ex-Ecessa WanWorkx WVR-30 10.7.4 has a false breach in cross-site requests, which stems from the vulnerability of cross-site requests to forge attacks and may lead to the performance of management operations.
Hazard Level
High
Vulnerability Type
跨站请求伪造
Affected Vendor
Ecessa
Published
2025-12-24
Last Modified
2026-02-24
References
https://www.ecessa.com https://www.exploit-db.com/exploits/44936