PT-2019-7177 · Synametrics Technologies · Syntail+2
Published
2019-11-21
·
Updated
2019-12-04
·
CVE-2015-3140
CVSS v2.0
6.8
Medium
| Vector | AV:N/AC:M/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
Synametrics Technologies SynaMan versions prior to 3.5 Build 1451
Synametrics Technologies Syncrify versions prior to 3.7 Build 856
Synametrics Technologies SynTail versions prior to 1.5 Build 567
Description
The issue concerns multiple cross-site request forgery (CSRF) vulnerabilities. CSRF is a type of attack where an attacker tricks a user into performing unintended actions on a web application that the user is authenticated to. This can lead to unauthorized actions being taken on behalf of the user.
Recommendations
For Synametrics Technologies SynaMan versions prior to 3.5 Build 1451, update to version 3.5 Build 1451 or later.
For Synametrics Technologies Syncrify versions prior to 3.7 Build 856, update to version 3.7 Build 856 or later.
For Synametrics Technologies SynTail versions prior to 1.5 Build 567, update to version 1.5 Build 567 or later.
Exploit
Fix
CSRF
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Syntail
Synaman
Syncrify