PT-2019-7177 · Synametrics Technologies · Syntail+2
Publicado
2019-11-21
·
Atualizado
2019-12-04
·
CVE-2015-3140
CVSS v2.0
6.8
Média
| Vetor | AV:N/AC:M/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
Synametrics Technologies SynaMan versions prior to 3.5 Build 1451
Synametrics Technologies Syncrify versions prior to 3.7 Build 856
Synametrics Technologies SynTail versions prior to 1.5 Build 567
Description
The issue concerns multiple cross-site request forgery (CSRF) vulnerabilities. CSRF is a type of attack where an attacker tricks a user into performing unintended actions on a web application that the user is authenticated to. This can lead to unauthorized actions being taken on behalf of the user.
Recommendations
For Synametrics Technologies SynaMan versions prior to 3.5 Build 1451, update to version 3.5 Build 1451 or later.
For Synametrics Technologies Syncrify versions prior to 3.7 Build 856, update to version 3.7 Build 856 or later.
For Synametrics Technologies SynTail versions prior to 1.5 Build 567, update to version 1.5 Build 567 or later.
Exploit
Correção
CSRF
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Syntail
Synaman
Syncrify