Vulnerabilities > Snapt > Aria > High

DATE CVE VULNERABILITY TITLE RISK
2022-03-21 CVE-2022-24235 Cross-Site Request Forgery (CSRF) vulnerability in Snapt Aria 12.8
A Cross-Site Request Forgery (CSRF) in the management portal of Snapt Aria v12.8 allows attackers to escalate privileges and execute arbitrary code via unspecified vectors.
network
low complexity
snapt CWE-352
8.8
8.8
2022-03-21 CVE-2022-24237 OS Command Injection vulnerability in Snapt Aria 12.8
The snaptPowered2 component of Snapt Aria v12.8 was discovered to contain a command injection vulnerability.
network
low complexity
snapt CWE-78
8.8
8.8