CVE-2020-7503
N/A
N/A
Summary
A CWE-352: Cross-Site Request Forgery (CSRF) vulnerability exists in Easergy T300 (Firmware version 1.5.2 and older) which could allow an attacker to execute malicious commands on behalf of a legitimate user when xsrf-token data is intercepted.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | Easergy T300 (Firmware version 1.5.2 and older) | Easergy T300 (Firmware version 1.5.2 and older) | affected |
Weaknesses
- CWE-352: CWE-352: Cross-Site Request Forgery (CSRF)
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.