| Max CVSS | 6.8 | Min CVSS | 5.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2008-7139 | 6.8 |
Multiple cross-site request forgery (CSRF) vulnerabilities in WS-Proxy in Eye-Fi 1.1.2 allow remote attackers to hijack the authentication of users for requests that modify configuration via a SOAPAction parameter of (1) urn:SetOptions for autostart,
|
11-10-2018 - 20:58 | 01-09-2009 - 16:30 | |
| CVE-2008-7137 | 5.0 |
WS-Proxy in Eye-Fi 1.1.2 allows remote attackers to cause a denial of service (crash) via an empty query string to port 59278 and other unspecified vectors.
|
11-10-2018 - 20:58 | 01-09-2009 - 16:30 | |
| CVE-2008-7138 | 5.0 |
The Manager in Eye-Fi 1.1.2 generates predictable snonce values based on the time of day, which allows remote attackers to bypass authentication and upload arbitrary images by guessing the snonce.
|
11-10-2018 - 20:58 | 01-09-2009 - 16:30 |