Security Advisory

CVE-2024-45372

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-09-26 04:06:47

Last updated 2025-03-25 15:58:46

Assigner jpcert

State PUBLISHED

Description

MZK-DP300N firmware versions 1.04 and earlier contains a cross-site request forger vulnerability. Viewing a malicious page while logging in to the web management page of the affected product may lead the user to perform unintended operations such as changing the login password, etc.

← Browse all CVEs View on cve.org ↗