Lucene search
Alpine Linux Development TeamALPINE:CVE-2019-7346HistoryFeb 04, 2019 - 7:29 p.m.
CVE-2019-7346
2019-02-0419:29:00
Alpine Linux Development Team
security.alpinelinux.org
14
0.001 Low
EPSS
Percentile
43.1%
A CSRF check issue exists in ZoneMinder through 1.32.3 as whenever a CSRF check fails, a callback function is called displaying a “Try again” button, which allows resending the failed request, making the CSRF attack successful.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Alpine | edge-community | noarch | zoneminder | < 1.36.7-r0 | UNKNOWN |
| Alpine | 3.15-community | noarch | zoneminder | < 1.36.7-r0 | UNKNOWN |
| Alpine | 3.16-community | noarch | zoneminder | < 1.36.7-r0 | UNKNOWN |
| Alpine | 3.17-community | noarch | zoneminder | < 1.36.7-r0 | UNKNOWN |
| Alpine | 3.18-community | noarch | zoneminder | < 1.36.7-r0 | UNKNOWN |
| Alpine | 3.19-community | noarch | zoneminder | < 1.36.7-r0 | UNKNOWN |
| Alpine | 3.20-community | noarch | zoneminder | < 1.36.7-r0 | UNKNOWN |
Related
osv
osv
CVE-2019-7346
2019-02-04 19:29:01
cvelist
cvelist
CVE-2019-7346
2022-10-03 16:19:30
veracode
veracode
Cross-Site Request Forgery (CSRF)
2021-09-30 05:57:23
ubuntucve
ubuntucve
CVE-2019-7346
2019-02-04 00:00:00
cnvd
cnvd
ZoneMinder Cross-Site Request Forgery Vulnerability (CNVD-2022-57808)
2022-04-01 00:00:00
prion
prion
Cross site request forgery (csrf)
2019-02-04 19:29:00
cve
cve
CVE-2019-7346
2019-02-04 19:29:00
debiancve
debiancve
CVE-2019-7346
2019-02-04 19:29:00
openvas
openvas
ZoneMinder < 1.34.0 Multiple Vulnerabilities
2019-02-05 00:00:00