AI Score
Confidence
High
EPSS
Percentile
77.1%
Cross-site request forgery (CSRF) vulnerability in upgrade_step2.sh in MiCasaVerde VeraLite with firmware 1.5.408 allows remote attackers to hijack the authentication of users for requests that install arbitrary firmware via the squashfs parameter.
packetstormsecurity.com/files/122654/MiCasaVerde-VeraLite-1.5.408-Traversal-Authorization-CSRF-Disclosure.html
www.exploit-db.com/exploits/27286
www3.trustwave.com/spiderlabs/advisories/TWSL2013-019.txt