How severe is CVE-2020-36908?

CVE-2020-36908 has a CVSS v3 score of 5.3 (MEDIUM).

CVE-2020-36908

5.3MEDIUM

SnapGear Management Console SG560 version 3.1.5 contains a cross-site request forgery vulnerability that allows attackers to perform administrative actions without user consent. Attackers can craft a

Опубликовано: 1/6/2026Обновлено: 1/8/2026

Описание

SnapGear Management Console SG560 version 3.1.5 contains a cross-site request forgery vulnerability that allows attackers to perform administrative actions without user consent. Attackers can craft a malicious web page that automatically submits a form to create a new super user account with full administrative privileges when a logged-in user visits the page.

ИИ-АнализНа базе ИИ

Ссылки

https://exchange.xforce.ibmcloud.com/vulnerabilities/182969
https://packetstorm.news/files/id/157937
https://www.exploit-db.com/exploits/48554
https://www.vulncheck.com/advisories/secure-computing-snapgear-management-console-sg-cross-site-request-forgery-via-admin-users
https://www.zeroscience.mk/en/vulnerabilities/ZSL-2020-5567.php