Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2023-38579

Published: 06/02/2024 Updated: 13/02/2024
CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8
VMScore: 0
Subscribe to L206-f2g Firmware

Vulnerability Summary

The cross-site request forgery token in the request may be predictable or easily guessable allowing malicious users to craft a malicious request, which could be triggered by a victim unknowingly. In a successful CSRF attack, the attacker could lead the victim user to carry out an action unintentionally.

Vulnerable Product Search on Vulmon Subscribe to Product

westermo l206-f2g_firmware 4.24

ICS Advisories

https://ics-cert.us-cert.gov/advisories/fd09455294bc86a1cc5868d5fcc2fecb

References

CWE-352https://www.cisa.gov/news-events/ics-advisories/icsa-24-023-04https://nvd.nist.govhttps://www.cisa.gov/news-events/ics-advisories/icsa-24-023-04
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463CVE-2024-29895injectCVE-2023-52689CVE-2024-5049CVE-2024-5051privilege escalationphysicalCVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook