Unrated severityNVD Advisory· Published Dec 16, 2020· Updated Aug 4, 2024
CVE-2020-28931
CVE-2020-28931
Description
Lack of an anti-CSRF token in the entire administrative interface in EPSON EPS TSE Server 8 (21.0.11) allows an unauthenticated attacker to force an administrator to execute external POST requests by visiting a malicious website.
Affected products
2- EPSON/EPS TSE Serverdescription
- Range: =21.0.11
Patches
Vulnerability mechanics
References
1- blog.bssi.fr/multiple-vulnerabilities-within-epson-eps-tse-server-8/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.