← Back

CVE-2008-0524

nvd nist
Published: Jan 31, 2008Modified: Apr 23, 2026

JSON object

Loading...
7.5
Vector
AV:N/AC:L/Au:N/C:P/I:P/A:P
Exploitability: 10.0 / Impact: 6.4
Source: NVD

Description

Cross-site request forgery (CSRF) vulnerability in the management interface in multiple Yamaha RT series routers allows remote attackers to change password settings and probably other configuration settings as administrators via unspecified vectors.

Affected (18)

Yamaha
18 products
Rt107e
Rt52pro
Rt56v
Rt57i
Rt58i
Rt60w
Rt80i
Rta50i
Rta52i
Rta54i
Rta55i
Rtv700
Rtw65b
Rtw65i
Rtx1000
Rtx1100
Rtx1500
Srt100
Configuration A
18 vulnerable
Vulnerable SoftwareAffected Versions
Rt107e
All versions
Rt52pro
All versions
Rt56v
All versions
Rt57i
All versions
Rt58i
All versions
Rt60w
All versions
Rt80i
All versions
Rta50i
All versions
Rta52i
All versions
Rta54i
All versions
Rta55i
All versions
Rtv700
All versions
Rtw65b
All versions
Rtw65i
All versions
Rtx1000
All versions
Rtx1100
All versions
Rtx1500
All versions
Srt100
All versions

Related CWEs

CWE-352
Cross-Site Request Forgery (CSRF)
The web application does not, or can not, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request.

References (10)

Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.