Ecessa WANWorx WVR-30 Cross-Site Request Forgery Vulnerability Allowing Superuser Account Creation
Vulnerability
A cross-site request forgery (CSRF) vulnerability has been identified in Ecessa WANWorx WVR-30 versions prior to 10.7.4. This vulnerability allows attackers to perform administrative actions without proper request validation. By crafting a malicious web page with a hidden form, attackers can trick an authenticated administrator into creating a new superuser account.
Impact
Exploitation of this vulnerability allows for unauthorized administrative actions to be performed, including the creation of superuser accounts.
Reproduction
To exploit this vulnerability, an attacker must create a malicious web page that includes a hidden form. This form should be set to submit to the application's utility configuration login action. The form must include the necessary fields to create a new user account, such as usernames, passwords, and a designation of superuser status. Once the form is prepared, the attacker must trick an authenticated administrator into visiting the page, which will trigger the form submission and create the superuser account.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.