exploitDog

GHSA-h6g5-q5mh-3mg9

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

AdRem NetCrunch 10.6.0.4587 has a Cross-Site Request Forgery (CSRF) vulnerability in the NetCrunch web client. Successful exploitation requires a logged-in user to open a malicious page and leads to account takeover.

AdRem NetCrunch 10.6.0.4587 has a Cross-Site Request Forgery (CSRF) vulnerability in the NetCrunch web client. Successful exploitation requires a logged-in user to open a malicious page and leads to account takeover.

Ссылки

EPSS

Процентиль: 31%

0.00115

Низкий

CVE ID

Дефекты

CWE-352

Связанные уязвимости

CVE-2019-14481

CVSS3: 5.4

nvd

около 5 лет назад

AdRem NetCrunch 10.6.0.4587 has a Cross-Site Request Forgery (CSRF) vulnerability in the NetCrunch web client. Successful exploitation requires a logged-in user to open a malicious page and leads to account takeover.

EPSS

Процентиль: 31%

0.00115

Низкий

CVE ID

Дефекты

CWE-352