Описание
Cross-site request forgery (CSRF) vulnerability on KDDI HOME SPOT CUBE devices before 2 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
Ссылки
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:kddi:home_spot_cube_firmware:2.0:*:*:*:*:*:*:*
cpe:2.3:h:kddi:home_spot_cube:*:*:*:*:*:*:*:*
EPSS
Процентиль: 33%
0.00129
Низкий
7.5 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-352
Связанные уязвимости
CVSS3: 7.5
github
больше 3 лет назад
Cross-site request forgery (CSRF) vulnerability on KDDI HOME SPOT CUBE devices before 2 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
EPSS
Процентиль: 33%
0.00129
Низкий
7.5 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-352