High severity8.8NVD Advisory· Published Nov 15, 2017· Updated Jun 17, 2026
CVE-2017-7851
CVE-2017-7851
Description
D-Link DCS-936L devices with firmware before 1.05.07 have an inadequate CSRF protection mechanism that requires the device's IP address to be a substring of the HTTP Referer header.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1Patches
Vulnerability mechanics
References
2- www.qualys.com/2017/03/26/qsa-2017-03-26/qsa-2017-03-26.pdfnvdExploitIssue TrackingThird Party Advisory
- ftp2.dlink.com/PRODUCTS/DCS-936L/REVA/BETA/DCS-936L_REVA_RELEASE_NOTES_v1.05.07_EN.pdfnvdIssue TrackingRelease NotesVendor Advisory
News mentions
0No linked articles in our index yet.