VYPR

ShieldLink SL175EHQ

by Ecessa

CVEs (2)

  • CVE-2018-13032HigJul 1, 2018
    risk 0.60cvss 8.8epss 0.02

    ECESSA ShieldLink SL175EHQ 10.7.4 devices have CSRF to add superuser accounts via the cgi-bin/pl_web.cgi/util_configlogin_act URI.

  • CVE-2018-25150MedDec 24, 2025
    risk 0.34cvss 5.3epss 0.00

    Ecessa ShieldLink SL175EHQ 10.7.4 contains a cross-site request forgery vulnerability that allows attackers to create administrative user accounts without authentication. Attackers can craft a malicious web page with a hidden form to add a superuser account by tricking a…