exploitDog

GHSA-q29g-9jh2-mxmc

Опубликовано: 29 июн. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 6.5

Описание

Marval MSM v14.19.0.12476 is vulnerable to Cross Site Request Forgery (CSRF). An attacker can disable the 2FA by sending the user a malicious form.

Marval MSM v14.19.0.12476 is vulnerable to Cross Site Request Forgery (CSRF). An attacker can disable the 2FA by sending the user a malicious form.

Ссылки

EPSS

Процентиль: 75%

0.0091

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-352

Связанные уязвимости

CVE-2022-31886

CVSS3: 6.5

nvd

больше 3 лет назад

Marval MSM v14.19.0.12476 is vulnerable to Cross Site Request Forgery (CSRF). An attacker can disable the 2FA by sending the user a malicious form.

EPSS

Процентиль: 75%

0.0091

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-352