3 matches found
CVE-2020-15151
OpenMage LTS before versions 19.4.6 and 20.0.2 allows attackers to circumvent the fromkey protection in the Admin Interface and increases the attack surface for Cross Site Request Forgery attacks. This issue is related to Adobe's CVE-2020-9690. It is patched in versions 19.4.6 and 20.0.2...
CVE-2020-15151
OpenMage LTS before 19.4.6 and 20.0.2 is affected by CVE-2020-15151, a timing-discrepancy/CSRF-related issue that lets attackers circumvent the fromkey protection in the Admin Interface, increasing CSRF surface. The underlying risk is an observable timing discrepancy that, if exploited, could byp...
CVE-2020-15151 Observable Timing Discrepancy in OpenMage LTS
OpenMage LTS before versions 19.4.6 and 20.0.2 allows attackers to circumvent the fromkey protection in the Admin Interface and increases the attack surface for Cross Site Request Forgery attacks. This issue is related to Adobe's CVE-2020-9690. It is patched in versions 19.4.6 and 20.0.2...