CVE-2017-2223

Summary

Cross-site request forgery (CSRF) vulnerability in TS-WPTCAM, TS-PTCAM, TS-PTCAM/POE, TS-WLC2, TS-WLCE, TS-WRLC firmware version 1.19 and earlier and TS-WPTCAM2 firmware version 1.01 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors.

Affected Software

VendorProductVersion RangeStatus
I-O DATA DEVICE, INC.TS-WPTCAMfirmware version 1.19 and earlieraffected
I-O DATA DEVICE, INC.TS-PTCAMfirmware version 1.19 and earlieraffected
I-O DATA DEVICE, INC.TS-PTCAM/POEfirmware version 1.19 and earlieraffected
I-O DATA DEVICE, INC.TS-WLC2firmware version 1.19 and earlieraffected
I-O DATA DEVICE, INC.TS-WLCEfirmware version 1.19 and earlieraffected
I-O DATA DEVICE, INC.TS-WRLCfirmware version 1.19 and earlieraffected
I-O DATA DEVICE, INC.TS-WPTCAM2firmware version 1.01 and earlieraffected

Weaknesses

  • Cross-site request forgery

ADP Enrichment

CVE Program Container

Additional References

References