CVE-2015-2848 in Tuxedo Touchजानकारी

सारांश

द्वारा MITRE

Cross-site request forgery (CSRF) vulnerability in Honeywell Tuxedo Touch before 5.2.19.0_VA allows remote attackers to hijack the authentication of arbitrary users for requests associated with home-automation commands, as demonstrated by a door-unlock command.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

आरक्षित करना

03/04/2015

प्रकटीकरण

26/07/2015

प्रविष्टि

VDB-76809

EPSS

0.00660

गतिविधियाँ

बहुत कम

स्रोत

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!