CVE-2014-1990

Name of the Vulnerable Software and Affected Versions TOSHIBA TEC e-Studio versions (affected versions not specified, but includes models 232, 233, 282, and 283)

Description A cross-site request forgery (CSRF) issue exists, allowing remote attackers to hijack the authentication of administrators for requests that change passwords. This can be exploited to make unauthorized changes to administrator passwords.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.