Описание
JM-DATA ONU JF511-TV version 1.0.67 is vulnerable to cross-site request forgery (CSRF) attacks, allowing attackers to perform administrative actions on behalf of authenticated users without their knowledge or consent.
Ссылки
- ExploitThird Party Advisory
- Third Party Advisory
- Third Party Advisory
- Product
- https://www.vulncheck.com/advisories/jm-data-onu-jf-tv-cross-site-request-forgery-csrf-vulnerabilityThird Party Advisory
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
Одно из
cpe:2.3:o:jm-data:onu_jf511-tv_firmware:1.0.55:*:*:*:*:*:*:*
cpe:2.3:o:jm-data:onu_jf511-tv_firmware:1.0.62:*:*:*:*:*:*:*
cpe:2.3:o:jm-data:onu_jf511-tv_firmware:1.0.67:*:*:*:*:*:*:*
cpe:2.3:h:jm-data:onu_jf511-tv:-:*:*:*:*:*:*:*
EPSS
Процентиль: 5%
0.00023
Низкий
8.8 High
CVSS3
Дефекты
CWE-352
Связанные уязвимости
CVSS3: 6.5
github
около 1 месяца назад
JM-DATA ONU JF511-TV version 1.0.67 is vulnerable to cross-site request forgery (CSRF) attacks, allowing attackers to perform administrative actions on behalf of authenticated users without their knowledge or consent.
EPSS
Процентиль: 5%
0.00023
Низкий
8.8 High
CVSS3
Дефекты
CWE-352