mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-07-29 05:56:59 +00:00
67 lines
2.2 KiB
JSON
67 lines
2.2 KiB
JSON
{
|
|
"data_type": "CVE",
|
|
"data_format": "MITRE",
|
|
"data_version": "4.0",
|
|
"CVE_data_meta": {
|
|
"ID": "CVE-2020-5641",
|
|
"ASSIGNER": "vultures@jpcert.or.jp",
|
|
"STATE": "PUBLIC"
|
|
},
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"vendor_name": "Netgear Japan G.K.",
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "GS108Ev3",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_value": "Firmware version 2.06.10 and earlier"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "Cross-site request forgery"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"url": "https://kb.netgear.com/000062496/GS108Ev3-Firmware-Version-2-06-14",
|
|
"refsource": "MISC",
|
|
"name": "https://kb.netgear.com/000062496/GS108Ev3-Firmware-Version-2-06-14"
|
|
},
|
|
{
|
|
"url": "https://jvn.jp/en/jp/JVN27806339/index.html",
|
|
"refsource": "MISC",
|
|
"name": "https://jvn.jp/en/jp/JVN27806339/index.html"
|
|
}
|
|
]
|
|
},
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "Cross-site request forgery (CSRF) vulnerability in GS108Ev3 firmware version 2.06.10 and earlier allows remote attackers to hijack the authentication of administrators and the product's settings may be changed without the user's intention or consent via unspecified vectors."
|
|
}
|
|
]
|
|
}
|
|
} |