cvedb.io
CVE-2024-45372
MEDIUM · CVSS 6.5
EPSS exploitation probability: 0%
Published 2024-09-26T05:15:12.100 · Last modified 2026-06-17T07:54:05.910

Summary

MZK-DP300N firmware versions 1.04 and earlier contains a cross-site request forger vulnerability. Viewing a malicious page while logging in to the web management page of the affected product may lead the user to perform unintended operations such as changing the login password, etc.

Affected products

planex — mzk-dp300n_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when planex ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.