NotCVE - vendor:"Iodata" product:"Hvl-a4.0 Firmware" version:"2.03"

1 results (0.005 seconds)

CVSS: 8.8EPSS: 0%CPEs: 13EXPL: 1

CVE-2016-4845

https://notcve.org/view.php?id=CVE-2016-4845

24 Sep 2016 — Cross-site request forgery (CSRF) vulnerability on I-O DATA DEVICE HVL-A2.0, HVL-A3.0, HVL-A4.0, HVL-AT1.0S, HVL-AT2.0, HVL-AT3.0, HVL-AT4.0, HVL-AT2.0A, HVL-AT3.0A, and HVL-AT4.0A devices with firmware before 2.04 allows remote attackers to hijack the authentication of arbitrary users for requests that delete content. Vulnerabilidad de CSRF en dispositivos I-O DATA DEVICE HVL-A2.0, HVL-A3.0, HVL-A4.0, HVL-AT1.0S, HVL-AT2.0, HVL-AT3.0, HVL-AT4.0, HVL-AT2.0A, HVL-AT3.0A y HVL-AT4.0A con firmware en versiones... • https://github.com/kaito834/cve-2016-4845_csrf • CWE-352: Cross-Site Request Forgery (CSRF) •