Vulnerabilities (CVE)

Filtered by vendor 3xlogic Subscribe
Filtered by product Infinias Access Control Firmware
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2019-18651 1 3xlogic 2 Infinias Access Control, Infinias Access Control Firmware 2024-11-21 5.8 MEDIUM 6.5 MEDIUM
A cross-site request forgery (CSRF) vulnerability in 3xLogic Infinias Access Control through 6.6.9586.0 allows remote attackers to execute malicious and unauthorized actions (e.g., delete application users) by sending a crafted HTML document or encoded URL to a user that the website trusts. The user needs to have an active privileged session.