CVE-2016-10863

Edimax Wi-Fi Extender devices allow goform/formwlencryptvxd CSRF with resultant PSK key disclosure.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:edimax:ew-7438rpn_mini_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:edimax:ew-7438rpn_mini:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:edimax:7237rpd_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:edimax:7237rpd:-:*:*:*:*:*:*:*

History

21 Nov 2024, 02:44

Type Values Removed Values Added
References () https://www.pentestpartners.com/security-blog/edimax-wi-fi-extender-can-disclose-your-wpa-key/ - Exploit, Third Party Advisory () https://www.pentestpartners.com/security-blog/edimax-wi-fi-extender-can-disclose-your-wpa-key/ - Exploit, Third Party Advisory

Information

Published : 2019-08-08 21:15

Updated : 2024-11-21 02:44


NVD link : CVE-2016-10863

Mitre link : CVE-2016-10863

CVE.ORG link : CVE-2016-10863


JSON object : View

Products Affected

edimax

  • 7237rpd_firmware
  • 7237rpd
  • ew-7438rpn_mini
  • ew-7438rpn_mini_firmware
CWE
CWE-352

Cross-Site Request Forgery (CSRF)