RSS   Vulnerabilities for
'Grundig smart inter@ctive firmware'
   RSS

2018-07-11
 
CVE-2018-13989

CWE-352
 

 
Grundig Smart Inter@ctive TV 3.0 devices allow CSRF attacks via a POST request to TCP port 8085 containing a predictable ID value, as demonstrated by a /sendrcpackage?keyid=-2544&keysymbol=-4081 request to shut off the device.

 


Copyright 2021, cxsecurity.com

 

Back to Top