exploitDog

GHSA-6cv4-q37v-xqw7

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 6.3

Описание

Cross-site request forgery (CSRF) vulnerability in NetApp Snap Creator Framework before 4.3.0P1 allows remote attackers to hijack the authentication of users for requests that have unspecified impact via unknown vectors.

Cross-site request forgery (CSRF) vulnerability in NetApp Snap Creator Framework before 4.3.0P1 allows remote attackers to hijack the authentication of users for requests that have unspecified impact via unknown vectors.

Ссылки

EPSS

Процентиль: 26%

0.00089

Низкий

6.3 Medium

CVSS3

CVE ID

Дефекты

CWE-352

Связанные уязвимости

CVE-2016-5372

CVSS3: 6.3

nvd

почти 9 лет назад

Cross-site request forgery (CSRF) vulnerability in NetApp Snap Creator Framework before 4.3.0P1 allows remote attackers to hijack the authentication of users for requests that have unspecified impact via unknown vectors.

EPSS

Процентиль: 26%

0.00089

Низкий

6.3 Medium

CVSS3

CVE ID

Дефекты

CWE-352