Security Vulnerabilities - CVEs Published In April 2016
Cross-site request forgery (CSRF) vulnerability on NEC Aterm WF800HP devices with firmware 1.0.17 and earlier allows remote attackers to hijack the authentication of arbitrary users.
CVSS Score
8.8
EPSS Score
0.001
Published
2016-04-01
Cross-site request forgery (CSRF) vulnerability on NEC Aterm WG300HP devices allows remote attackers to hijack the authentication of arbitrary users.
CVSS Score
8.8
EPSS Score
0.001
Published
2016-04-01
Cisco FireSIGHT System Software 5.4.0 through 6.0.1 and ASA with FirePOWER Services 5.4.0 through 6.0.0.1 allow remote attackers to bypass malware protection via crafted fields in HTTP headers, aka Bug ID CSCux22726.
CVSS Score
7.5
EPSS Score
0.005
Published
2016-04-01
Page 66