13 matches found
CVE-2026-45504
Server-side request forgery ssrf in Microsoft Exchange Server allows an authorized attacker to elevate privileges over a network...
CVE-2026-45504
creationtimestamp| type| source ---|---|--- 2026-06-09 11:35:29+00:00| seen| https://advisories.ncsc.nl/advisory?id=NCSC-2026-0185 2026-06-09 16:12:18+00:00| seen| https://www.thezdi.com/blog/2026/6/9/the-june-2026-security-update-review...
CVE-2024-45504
Cross-site request forgery CSRF vulnerability in multiple Alps System Integration products and the OEM products allow a remote unauthenticated attacker to hijack the authentication of the user and to perform unintended operations if the user views a malicious page while logged in...
CVE-2024-45504
creationtimestamp| type| source ---|---|--- 2024-09-10 07:32:19+00:00| seen| https://t.me/cvedetector/5164...
CVE-2024-45504
Cross-site request forgery CSRF vulnerability in multiple Alps System Integration products and the OEM products allow a remote unauthenticated attacker to hijack the authentication of the user and to perform unintended operations if the user views a malicious page while logged in...
CVE-2024-45504
Cross-site request forgery CSRF vulnerability in multiple Alps System Integration products and the OEM products allow a remote unauthenticated attacker to hijack the authentication of the user and to perform unintended operations if the user views a malicious page while logged in...
CVE-2024-45504
CVE-2024-45504 is a CSRF vulnerability affecting multiple Alps System Integration products and OEMs, allowing a remote unauthenticated attacker to perform unintended actions if a logged-in user views a malicious page. Affected products/components include Alps InterSafe GatewayConnection, InterSaf...
CVE-2024-45504
Cross-site request forgery CSRF vulnerability in multiple Alps System Integration products and the OEM products allow a remote unauthenticated attacker to hijack the authentication of the user and to perform unintended operations if the user views a malicious page while logged in...
CVE-2022-45504
An issue in the component tpisystoolhandle0 /goform/SysToolRestoreSet of Tenda W6-S v1.0.0.4510 allows unauthenticated attackers to arbitrarily reboot the device...
CVE-2022-45504
CVE-2022-45504 affects Tenda W6-S v1.0.0.4(510). The issue exists in tpi_systool_handle(0) via the /goform/SysToolRestoreSet endpoint, allowing unauthenticated attackers to reboot the device. Impact is availability disruption; no confidentiality/integrity impact indicated. Evidence from multiple ...
CVE-2022-45504
An issue in the component tpisystoolhandle0 /goform/SysToolRestoreSet of Tenda W6-S v1.0.0.4510 allows unauthenticated attackers to arbitrarily reboot the device...
CVE-2021-45504
Certain NETGEAR devices are affected by authentication bypass. This affects CBR40 before 2.5.0.24, CBR750 before 4.6.3.6, RBR852 before 3.2.17.12, RBR850 before 3.2.17.12, and RBS850 before 3.2.17.12...
CVE-2021-45504
CVE-2021-45504 affects certain NETGEAR devices via an authentication bypass. Affected models and firmware ranges are: CBR40 before 2.5.0.24; CBR750 before 4.6.3.6; RBR852 before 3.2.17.12; RBR850 before 3.2.17.12; RBS850 before 3.2.17.12. The provided documents indicate the vulnerability impact a...