exploitDog

GHSA-4r43-r2mj-mq4p

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 4.3

Описание

Cross-site request forgery (CSRF) vulnerability in Cybozu Garoon 3.0.0 to 4.2.2 allows remote attackers to hijack the authentication of a logged in user to force a logout via unspecified vectors.

Cross-site request forgery (CSRF) vulnerability in Cybozu Garoon 3.0.0 to 4.2.2 allows remote attackers to hijack the authentication of a logged in user to force a logout via unspecified vectors.

Ссылки

EPSS

Процентиль: 46%

0.00232

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-352

Связанные уязвимости

CVE-2016-4909

CVSS3: 4.3

nvd

больше 8 лет назад

Cross-site request forgery (CSRF) vulnerability in Cybozu Garoon 3.0.0 to 4.2.2 allows remote attackers to hijack the authentication of a logged in user to force a logout via unspecified vectors.

EPSS

Процентиль: 46%

0.00232

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-352