CNNVD-202601-2794 Information

CNNVD ID

CNNVD-202601-2794

Related CVE

CVE-2021-47820

• CNNVD Published: 2026-01-16

Description (Chinese)

Ubee EVW327是中国台湾Ubee公司的一款多功能有线电视网关。 Ubee EVW327存在跨站请求伪造漏洞，该漏洞源于存在跨站请求伪造，可能导致未经用户同意启用远程访问。

Description (English)

Ubee EVW327 is a multi-purpose cable gateway to Ubee, Taiwan, China. Ubee EVW 327 has a false gap in cross-site requests, which stems from the existence of cross-site requests for forgery, which may lead to remote access without user consent.

Hazard Level

High

Vulnerability Type

跨站请求伪造

Affected Vendor

Ubee

Published

2026-01-16

Last Modified

2026-02-24

References

https://www.exploit-db.com/exploits/49920 https://www.ubeeinteractive.com https://www.vulncheck.com/advisories/ubee-evw-enable-remote-access-cross-site-request-forgery-csrf