CVE-2023-32625
CVE-2023-32625
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 0.3%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
21 Jul 2023Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Cross-site request forgery (CSRF) vulnerability in TS Webfonts for SAKURA 3.1.2 and earlier allows a remote unauthenticated attacker to hijack the authentication of a user and to change settings by having a user view a malicious page.
Affected products
SAKURA internet Inc. · TS Webfonts for SAKURA