Описание
A cross-site request forgery vulnerability in Lenovo Service Bridge before version 4 could be exploited by an attacker with access to the DHCP server used by the system where LSB is installed.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:lenovo:lenovo_service_bridge:-:*:*:*:*:*:*:*
EPSS
Процентиль: 37%
0.00159
Низкий
8.8 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-352
Связанные уязвимости
CVSS3: 8.8
github
больше 3 лет назад
A cross-site request forgery vulnerability in Lenovo Service Bridge before version 4 could be exploited by an attacker with access to the DHCP server used by the system where LSB is installed.
EPSS
Процентиль: 37%
0.00159
Низкий
8.8 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-352