← Back

Infinias Access Control Firmware

infinias_access_control_firmware

Vendor: 3xlogic • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2019-18651
13xlogic
1Infinias Access Control Firmware
Nov 21, 2024
Nov 14, 2019
N/A· v4
6.5 MEDIUM· v3
5.8 MEDIUM· v2
A cross-site request forgery (CSRF) vulnerability in 3xLogic Infinias Access Control through 6.6.9586.0 allows remote attackers to execute malicious and unauthorized actions (e.g., delete application users) by sending a...Show more
A cross-site request forgery (CSRF) vulnerability in 3xLogic Infinias Access Control through 6.6.9586.0 allows remote attackers to execute malicious and unauthorized actions (e.g., delete application users) by sending a crafted HTML document or encoded URL to a user that the website trusts. The user needs to have an active privileged session.Show less