CVE-2018-14908: CSRF
First published: Fri Aug 03 2018(Updated: )
Samsung Syncthru Web Service V4.05.61 is vulnerable to CSRF on every request, as demonstrated by sws.application/printinformation/printReportSetupView.sws for a "Print emails sent" action.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Samsung SyncThru Web Service | =4.05.61 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2018-14908.
What is the severity of CVE-2018-14908?
The severity of CVE-2018-14908 is high with a severity value of 8.8.
Which version of Samsung Syncthru Web Service is affected by CVE-2018-14908?
Samsung Syncthru Web Service version 4.05.61 is affected by CVE-2018-14908.
What is the impact of the vulnerability?
The vulnerability allows for CSRF attacks on every request, potentially leading to unauthorized actions being performed on the web service.
Is there a fix available for CVE-2018-14908?
Currently, there is no official fix available for CVE-2018-14908. It is recommended to follow the best practices for web service security and consider implementing additional protection mechanisms.
- collector/nvd-index
- agent/weakness
- agent/severity
- agent/references
- agent/author
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/samsung
- canonical/samsung syncthru web service
- version/samsung syncthru web service/4.05.61