exploitDog

GHSA-773p-m7cr-6h5f

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 4.3

Описание

Cross-site request forgery (CSRF) vulnerability in AQUOS Photo Player HN-PP150 1.02.00.04 through 1.03.01.04 allows remote attackers to hijack the authentication of arbitrary users.

Cross-site request forgery (CSRF) vulnerability in AQUOS Photo Player HN-PP150 1.02.00.04 through 1.03.01.04 allows remote attackers to hijack the authentication of arbitrary users.

Ссылки

EPSS

Процентиль: 19%

0.00061

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-352

Связанные уязвимости

CVE-2016-1175

CVSS3: 4.3

nvd

почти 10 лет назад

Cross-site request forgery (CSRF) vulnerability in AQUOS Photo Player HN-PP150 1.02.00.04 through 1.03.01.04 allows remote attackers to hijack the authentication of arbitrary users.

EPSS

Процентиль: 19%

0.00061

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-352