Skip to main content

CWE-344

Use of Invariant Value in Dynamically Changing Context

2 CVEs Avg CVSS 5.2 MITRE
0
CRITICAL
0
HIGH
2
MEDIUM
0
LOW
0
POC
0
KEV

Monthly

CVE-2026-42961 MEDIUM This Month

Cross-site request forgery (CSRF) in ELECOM wireless LAN access points (WAB-BE187-M, WAB-BE72-M, WAB-BE36-M, WAB-BE36-S) allows remote attackers to trick authenticated users into performing unintended administrative operations by viewing a malicious webpage. The vulnerability exists despite CSRF token implementation due to inadequate token validation, enabling integrity compromise of access point configuration without user knowledge.

CSRF Wab Be187 M Wab Be72 M Wab Be36 M Wab Be36 S
NVD
CVSS 4.0
5.1
EPSS
0.0%
CVE-2022-36022 Maven MEDIUM This Month

Deeplearning4J is a suite of tools for deploying and training deep learning models using the JVM. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Google Deeplearning4J
NVD GitHub
CVSS 3.1
5.3
EPSS
0.4%
EPSS 0% CVSS 5.1
MEDIUM This Month

Cross-site request forgery (CSRF) in ELECOM wireless LAN access points (WAB-BE187-M, WAB-BE72-M, WAB-BE36-M, WAB-BE36-S) allows remote attackers to trick authenticated users into performing unintended administrative operations by viewing a malicious webpage. The vulnerability exists despite CSRF token implementation due to inadequate token validation, enabling integrity compromise of access point configuration without user knowledge.

CSRF Wab Be187 M Wab Be72 M +2
NVD
EPSS 0% CVSS 5.3
MEDIUM This Month

Deeplearning4J is a suite of tools for deploying and training deep learning models using the JVM. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Google Deeplearning4J
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy