Vulnerabilities > IRZ > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-03-19 | CVE-2022-27226 | Cross-Site Request Forgery (CSRF) vulnerability in IRZ products A CSRF issue in /api/crontab on iRZ Mobile Routers through 2022-03-16 allows a threat actor to create a crontab entry in the router administration panel. | 8.8 |
| 2016-05-30 | CVE-2016-2309 | Insufficient Verification of Data Authenticity vulnerability in IRZ Ruh2 iRZ RUH2 before 2b does not validate firmware patches, which allows remote authenticated users to modify data or cause a denial of service via unspecified vectors. | 7.2 |