CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-28931

Lack of an anti-CSRF token in the entire administrative interface in EPSON EPS TSE Server 8 (21.0.11) allows an unauthenticated attacker to force an administrator to execute external POST requests by visiting a malicious website.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 60.0%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 6.8

References

https://blog.bssi.fr/multiple-vulnerabilities-within-epson-eps-tse-server-8/#vulnerability-3
https://blog.bssi.fr/multiple-vulnerabilities-within-epson-eps-tse-server-8/#vulnerability-3

Products affected by CVE-2020-28931

Epson » Eps Tse Server 8 » Version: N/A

cpe:2.3:h:epson:eps_tse_server_8:-
Epson » Eps Tse Server 8 Firmware » Version: 21.0.11

cpe:2.3:o:epson:eps_tse_server_8_firmware:21.0.11

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-28931

Products

Pricing

Contact Us