CVE-2018-14908

Name of the Vulnerable Software and Affected Versions Samsung Syncthru Web Service version V4.05.61

Description The issue concerns a CSRF vulnerability that affects every request. An example of this vulnerability is demonstrated by the "Print emails sent" action, which can be exploited through the endpoint "sws.application/printinformation/printReportSetupView.sws".

Recommendations For Samsung Syncthru Web Service version V4.05.61, consider implementing proper CSRF protection mechanisms to prevent exploitation. As a temporary workaround, restrict access to the "sws.application/printinformation/printReportSetupView.sws" endpoint to minimize the risk of exploitation.