Vulnerabilities > Actiontec > Ncs01 Firmware

DATE CVE VULNERABILITY TITLE RISK
2015-08-23 CVE-2015-2905 Cross-Site Request Forgery (CSRF) vulnerability in Actiontec Ncs01 Firmware
Cross-site request forgery (CSRF) vulnerability on Actiontec GT784WN modems with firmware before NCS01-1.0.13 allows remote attackers to hijack the authentication or intranet connectivity of arbitrary users.
network
actiontec CWE-352
6.8
2015-08-23 CVE-2015-2904 Unspecified vulnerability in Actiontec Ncs01 Firmware
Actiontec GT784WN modems with firmware before NCS01-1.0.13 have hardcoded credentials, which makes it easier for remote attackers to obtain root access by connecting to the web administration interface.
low complexity
actiontec
8.3