CVE-2017-2238

Summary

Cross-site request forgery (CSRF) vulnerability in Toshiba Home gateway HEM-GW16A firmware HEM-GW16A-FW-V1.2.0 and earlier and Toshiba Home gateway HEM-GW26A firmware HEM-GW26A-FW-V1.2.0 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors.

Affected Software

VendorProductVersion RangeStatus
Toshiba Lighting & Technology CorporationToshiba Home gateway HEM-GW16Afirmware HEM-GW16A-FW-V1.2.0 and earlieraffected
Toshiba Lighting & Technology CorporationToshiba Home gateway HEM-GW26Afirmware HEM-GW26A-FW-V1.2.0 and earlieraffected

Weaknesses

  • Cross-site request forgery

ADP Enrichment

CVE Program Container

Additional References

References