CVE-2013-3516

CVE-2013-3516

EPSS 0.7%

NETGEAR WNR3500U and WNR3500L routers uses form tokens abased solely on router's current date and time, which allows attackers to guess the CSRF tokens.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://www.ise.io/casestudies/exploiting-soho-routers/https://www.ise.io/research/studies-and-papers/netgear_wnr3500/https://www.ise.io/soho_service_hacks/