CVE-2018-13989

Published: 2018-07-11T16:29Z

Last Modified: 2024-11-21T03:48Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Grundig Smart Inter@ctive TV 3.0 devices allow CSRF attacks via a POST request to TCP port 8085 containing a predictable ID value, as demonstrated by a /sendrcpackage?keyid=-2544&keysymbol=-4081 request to shut off the device. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt