CVE-2023-32625

Summary

Cross-site request forgery (CSRF) vulnerability in TS Webfonts for SAKURA 3.1.2 and earlier allows a remote unauthenticated attacker to hijack the authentication of a user and to change settings by having a user view a malicious page.

Affected Software

VendorProductVersion RangeStatus
SAKURA internet Inc.TS Webfonts for SAKURA3.1.2 and earlieraffected

Weaknesses

  • Cross-site request forgery (CSRF)

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References