Vulnerabilities > SMA > Sunny Webbox Firmware > 1.6

DATE CVE VULNERABILITY TITLE RISK
2024-02-26 CVE-2024-1890 Unspecified vulnerability in SMA Sunny Webbox Firmware 1.6/1.61
Vulnerability whereby an attacker could send a malicious link to an authenticated operator, which could allow remote attackers to perform a clickjacking attack on Sunny WebBox firmware version 1.6.1 and earlier.
network
low complexity
sma
5.4
2019-10-09 CVE-2019-13529 Cross-Site Request Forgery (CSRF) vulnerability in SMA Sunny Webbox Firmware 1.6
An attacker could send a malicious link to an authenticated operator, which may allow remote attackers to perform actions with the permissions of the user on the Sunny WebBox Firmware Version 1.6 and prior.
network
low complexity
sma CWE-352
8.8