CVE-2020-11919

CVSS 3.1 Score 8 of 10 (high)

Details

Published Nov 7, 2024

Updated: Nov 8, 2024

CWE ID 352

Summary

CVE-2020-11919 is a vulnerability affecting Siime Eye version 14.1.00000001.3.330.0.0.3.14. This issue exposes the software to Cross-Site Request Forgery (CSRF) attacks. CSRF allows an attacker to manipulate a user's session unknowingly, leading to unintended actions. Since no CSRF protection is implemented, an attacker can exploit this vulnerability by crafting malicious requests and tricking the user into visiting a malicious website. Successful exploitation can result in data manipulation, unauthorized access, and other significant consequences. It is strongly advised to update Siime Eye to a patched version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

Siime Eye

Advisories, Assessments, and Mitigations

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Uncovering MintsLoader With Recorded Future Malware Intelligence Hunting

Know What Matters

For Customers

For Partners