CVE-2016-0863

Cross-site request forgery (CSRF) vulnerability in Tollgrade SmartGrid LightHouse Sensor Management System (SMS) Software EMS before 5.1, and 4.1.0 Build 16, allows remote attackers to hijack the authentication of arbitrary users.
CSRF
Severity
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Atk. Vector
NETWORK
Atk. Complexity
LOW
Priv. Required
NONE
Base Score
CVSS 3.x
EPSS Score
Percentile: 56%
VendorProductVersion
tollgradesmartgrid_lighthouse_sensor_management_system
𝑥
≤ 5.0
tollgradesmartgrid_lighthouse_sensor_management_system
4.1.0
𝑥
= Vulnerable software versions