Security Advisory

CVE-2021-20120

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-10-21 16:27:20

Last updated 2024-08-03 17:30:07

Assigner tenable

State PUBLISHED

Description

The administration web interface for the Arris Surfboard SB8200 lacks any protections against cross-site request forgery attacks. This means that an attacker could make configuration changes (such as changing the administrative password) without the consent of the user.

← Browse all CVEs View on cve.org ↗