Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
9.3
CVSSv2
CVE-2020-16256
Published: 28/10/2020 Updated: 03/11/2020
CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6
CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8
VMScore: 828
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Vulnerability Summary
The API on Winston 1.5.4 devices is vulnerable to CSRF.
Subscribe to Winston Firmware
Vulnerability Trend
Vulnerable Product
Search on Vulmon
Subscribe to Product
winstonprivacy winston firmware 1.5.4
References
CWE-352
https://winstonprivacy.com/
https://labs.bishopfox.com/advisories/winston-privacy-version-1.5.4
https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
log injection
CVE-2024-37079
type confusion
CVE-2024-32943
CVE-2024-30103
CVE-2024-37350
arbitrary code
CVE-2024-6189
CVE-2024-6225
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started