High

DATE	CVE	VULNERABILITY TITLE	RISK
2018-11-01	CVE-2018-6907	Cross-Site Request Forgery (CSRF) vulnerability in Rainmachine web Application A Cross Site Request Forgery (CSRF) vulnerability in the Green Electronics RainMachine Mini-8 (2nd Generation) and Touch HD 12 web application allows an attacker to control the RainMachine device via the REST API. network low complexity rainmachine CWE-352	8.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.