Cross site request forgery (csrf)

2019-05-2220:29:00

PRIOn knowledge base

www.prio-n.com

8.6 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

31.5%

JSON

A Cross-Site Request Forgery (CSRF) vulnerability exists in the 1st Gen. Pelco Sarix Enhanced Camera and Spectra Enhanced PTZ Camera when an authenticated user clicks a specially crafted malicious link while logged into the camera.

CPENameOperatorVersion
d6220_firmwarege2.11
d6220l_firmwarege2.11
d6230_firmwarege2.11
d6230l_firmwarege2.11
ime119-1ei_firmwarelt2.2.3.0
ime119-1ep_firmwarelt2.2.3.0
ime119-1es_firmwarelt2.2.3.0
ime119-1i_firmwarelt2.2.3.0
ime119-1p_firmwarelt2.2.3.0
ime119-1s_firmwarelt2.2.3.0

Name	Operator	Version
d6220_firmware	ge	2.11
d6220l_firmware	ge	2.11
d6230_firmware	ge	2.11
d6230l_firmware	ge	2.11
ime119-1ei_firmware	lt	2.2.3.0
ime119-1ep_firmware	lt	2.2.3.0
ime119-1es_firmware	lt	2.2.3.0
ime119-1i_firmware	lt	2.2.3.0
ime119-1p_firmware	lt	2.2.3.0
ime119-1s_firmware	lt	2.2.3.0