Описание
Vulnerability whereby an attacker could send a malicious link to an authenticated operator, which could allow remote attackers to perform a clickjacking attack on Sunny WebBox firmware version 1.6.1 and earlier.
Ссылки
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.61 (включая)
Одновременно
cpe:2.3:o:sma:sunny_webbox_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:sma:sunny_webbox:*:*:*:*:*:*:*:*
EPSS
Процентиль: 31%
0.00119
Низкий
6.4 Medium
CVSS3
5.4 Medium
CVSS3
Дефекты
CWE-1021
Связанные уязвимости
CVSS3: 6.4
github
почти 2 года назад
Vulnerability whereby an attacker could send a malicious link to an authenticated operator, which could allow remote attackers to perform a clickjacking attack on Sunny WebBox firmware version 1.6.1 and earlier.
EPSS
Процентиль: 31%
0.00119
Низкий
6.4 Medium
CVSS3
5.4 Medium
CVSS3
Дефекты
CWE-1021