Wowza Streaming Engine 4.8.12

CPE Details

Wowza Streaming Engine 4.8.12
wowza
streaming_engine
4.8.12
2021-10-07
14h15 +00:00
2021-10-07
14h15 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:wowza:streaming_engine:4.8.12:*:*:*:*:*:*:*

Informations

Vendor

wowza

Product

streaming_engine

Version

4.8.12

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2024-52052 2024-11-21 22h20 +00:00 Wowza Streaming Engine below 4.9.1 permits an authenticated Streaming Engine Manager administrator to define a custom application property and poison a stream target for high-privilege remote code execution.
9.4
Critique
CVE-2021-35491 2021-10-05 13h10 +00:00 A Cross-Site Request Forgery (CSRF) vulnerability in Wowza Streaming Engine through 4.8.11+5 allows a remote attacker to delete a user account via the /enginemanager/server/user/delete.htm userName parameter. The application does not implement a CSRF token for the GET request. This issue was resolved in Wowza Streaming Engine release 4.8.14.
8.1
Haute