Lucene search

K
prionPRIOn knowledge basePRION:CVE-2019-7346
HistoryFeb 04, 2019 - 7:29 p.m.

Cross site request forgery (csrf)

2019-02-0419:29:00
PRIOn knowledge base
www.prio-n.com
5

8.6 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

43.5%

A CSRF check issue exists in ZoneMinder through 1.32.3 as whenever a CSRF check fails, a callback function is called displaying a “Try again” button, which allows resending the failed request, making the CSRF attack successful.

CPENameOperatorVersion
zoneminderle1.32.3

8.6 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

43.5%