Vulnerabilities > Dlink > DCS 2310L Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2017-04-24 CVE-2017-7852 Cross-Site Request Forgery (CSRF) vulnerability in Dlink products
D-Link DCS cameras have a weak/insecure CrossDomain.XML file that allows sites hosting malicious Flash objects to access and/or change the device's settings via a CSRF attack.
network
low complexity
dlink CWE-352
8.8
8.8