cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2021-31659,https://securityvulnerability.io/vulnerability/CVE-2021-31659,Cross Site Request Forgery Vulnerability in TP-Link Switches,"TP-Link's TL-SG2005 and TL-SG2008 switches are susceptible to a Cross Site Request Forgery vulnerability. This issue arises from the handling of configuration information within URLs, without implementing any form of token-based authentication. An attacker could exploit this vulnerability by tricking an authorized switch administrator into clicking a malicious link. This action may lead to unauthorized modification of the switch's password and tampering with configuration files, potentially compromising the integrity and security of network operations.",Tp-link,Tl-sg2005 Firmware,8.8,HIGH,0.0018899999558925629,false,,false,false,false,,,false,false,,2021-06-10T14:27:07.000Z,0
CVE-2021-31658,https://securityvulnerability.io/vulnerability/CVE-2021-31658,Array Index Error in TP-Link Managed Switches,"An array index error in TP-Link managed switches such as the TL-SG2005 and TL-SG2008 allows for improper handling of device description data. The vulnerable interface fails to filter special characters and only checks for data length, leading to application crashes and potential loss of all device configuration. This issue highlights the importance of secure coding practices to validate user inputs and protect critical device information from being compromised.",Tp-link,Tl-sg2005 Firmware,8.1,HIGH,0.0009500000160187483,false,,false,false,false,,,false,false,,2021-06-10T14:24:19.000Z,0