Junichi Murakami

**Name of the Vulnerable Software and Affected Versions** I-O DATA DEVICE ETX-R devices (affected versions not specified) **Description** A cross-site request forgery (CSRF) issue allows remote attackers to hijack the authentication of arbitrary users. This means an attacker can perform actions on behalf of a legitimate user without their knowledge or consent. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** I-O DATA DEVICE ETX-R devices (affected versions not specified) **Description** The issue allows remote attackers to cause a denial of service, resulting in a web-server crash. The specific vectors used to exploit this issue are not specified. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** AQUOS Photo Player HN-PP150 versions 1.02.00.04 through 1.03.01.04 **Description** The issue is related to a cross-site request forgery (CSRF) vulnerability, which allows remote attackers to hijack the authentication of arbitrary users. **Recommendations** For versions 1.02.00.04 through 1.03.01.04, consider implementing anti-CSRF measures, such as token-based validation, to prevent unauthorized requests. At the moment, there is no information about a newer version that contains a fix for this vulnerability.