What is CVE-2014-4162?

CVE-2014-4162 is a vulnerability in Zyxel P-660hw, classified under Cross-Site Request Forgery (CSRF). Published 2014-06-16.

Is CVE-2014-4162 known to be exploited?

19 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

CSRF in Zyxel P-660hw

CVE-2014-4162

Multiple cross-site request forgery (CSRF) vulnerabilities in the Zyxel P-660HW-T1 (v3) wireless router allow remote attackers to hijack the authentication of administrators for requests that change the (1) wifi password or (2) SSID via a…

Vulnerability class: CSRF (Cross-Site Request Forgery)

EPSS: 0.004 (63.4th percentile) — read the EPSS interpretation.

Affected products

Zyxel P-660hw — versions _t1
N/a — versions n/a

Weakness classification (CWE)

CWE-352 — Cross-Site Request Forgery (CSRF)

Public proof-of-concept exploits

References

33518 (Exploit, exploit, x_refsource_EXPLOIT-DB)
cve@mitre.org (x_refsource_MISC)
58513 (x_refsource_SECUNIA, third-party-advisory)
107449 (x_refsource_OSVDB, vdb-entry)

Frequently asked questions

What is CVE-2014-4162?: CVE-2014-4162 is a vulnerability in Zyxel P-660hw, classified under Cross-Site Request Forgery (CSRF). Published 2014-06-16.
Is CVE-2014-4162 known to be exploited?: 19 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.