Home

Description

JM-DATA ONU JF511-TV version 1.0.67 is vulnerable to cross-site request forgery (CSRF) attacks, allowing attackers to perform administrative actions on behalf of authenticated users without their knowledge or consent.

PUBLISHED Reserved 2025-12-27 | Published 2025-12-30 | Updated 2025-12-30 | Assigner VulnCheck




MEDIUM: 5.1CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
MEDIUM: 6.5CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

Problem types

Cross-Site Request Forgery (CSRF)

Product status

1.0.67
affected

1.0.62
affected

1.0.55
affected

Credits

Neurogenesia finder

References

www.zeroscience.mk/en/vulnerabilities/ZSL-2022-5708.php (Zero Science Lab Disclosure (ZSL-2022-5708)) third-party-advisory

packetstormsecurity.com/files/167487/ (Packet Storm Security Exploit Entry) exploit

cxsecurity.com/issue/WLB-2022060058 (CXSecurity Vulnerability Listing) third-party-advisory

exchange.xforce.ibmcloud.com/vulnerabilities/229355 (IBM X-Force Vulnerability Exchange Entry) vdb-entry

www.jm-data.com/ (JM-DATA Vendor Homepage) product

www.vulncheck.com/...site-request-forgery-csrf-vulnerability (VulnCheck Advisory: JM-DATA ONU JF511-TV 1.0.67 Cross-Site Request Forgery (CSRF) Vulnerability) third-party-advisory

cve.org (CVE-2022-50804)

nvd.nist.gov (CVE-2022-50804)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.