Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2018-4031
HistoryOct 31, 2019 - 9:15 p.m.

Cross site request forgery (csrf)

2019-10-3121:15:00
PRIOn knowledge base
www.prio-n.com
3

9.3 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

74.6%

JSON

An exploitable vulnerability exists in the safe browsing function of the CUJO Smart Firewall, version 7003. The flaw lies in the way the safe browsing function parses HTTP requests. The server hostname is extracted from captured HTTP/HTTPS requests and inserted as part of a Lua statement without prior sanitization, which results in arbitrary Lua script execution in the kernel. An attacker could send an HTTP request to exploit this vulnerability.

CPENameOperatorVersion
smart_firewalleq7003

Related

talos 1
cvelist 1
cve 1
nvd 1
threatpost 1
talosblog 1
talos
talos
CUJO Smart Firewall threatd hostname reputation check code execution vulnerability
2019-03-19 00:00:00
cvelist
cvelist
CVE-2018-4031
2019-10-31 20:29:02
cve
cve
CVE-2018-4031
2019-10-31 21:15:12
nvd
nvd
CVE-2018-4031
2019-10-31 21:15:12
threatpost
threatpost
Host of Flaws Found in CUJO Smart Firewall
2019-03-19 21:43:08
talosblog
talosblog
Vulnerability Spotlight: Multiple Vulnerabilities in CUJO Smart Firewall, Das U-Boot, OCTEON SDK, Webroot BrightCloud
2019-03-19 08:00:00

9.3 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

74.6%

JSON
Related for PRION:CVE-2018-4031
talos1cvelist1cve1nvd1threatpost1talosblog1