Bcu 500 Firmware
Monthly
A successful CSRF attack could force the user to perform state changing requests on the application. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Through the exploitation of active user sessions, an attacker could send custom requests to cause a denial-of-service condition on the device. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
A successful CSRF attack could force the user to perform state changing requests on the application. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Through the exploitation of active user sessions, an attacker could send custom requests to cause a denial-of-service condition on the device. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.