Frigate network video recorder prior to version 0.13.0 Beta 3 allows CSRF attacks via `config/save` and `config/set` endpoints
Reporter | Title | Published | Views | Family All 5 |
---|---|---|---|---|
![]() | Cross site request forgery (csrf) | 30 Oct 202323:15 | – | prion |
![]() | CVE-2023-45670 Frigate cross-site request forgery in `config_save` and `config_set` request handlers | 30 Oct 202322:38 | – | cvelist |
![]() | CVE-2023-45670 | 30 Oct 202323:15 | – | nvd |
![]() | CVE-2023-45670 | 30 Oct 202323:15 | – | osv |
![]() | Securing our home labs: Frigate code review | 13 Dec 202317:00 | – | github |
[
{
"vendor": "blakeblackshear",
"product": "frigate",
"versions": [
{
"version": "< 0.13.0-beta3",
"status": "affected"
}
]
}
]
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo