Lucene search
IcscertCVELIST:CVE-2023-42435HistoryOct 19, 2023 - 6:19 p.m.
CVE-2023-42435 Cross-Site Request Forgery in DEXMA DEXGate
2023-10-1918:19:28
CWE-352
icscert
www.cve.org
cve-2023-42435
cross-site request forgery
dexma dexgate
vulnerability
attacker
permissions
5.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L
8.8 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
24.1%
The affected product is vulnerable to a cross-site request forgery vulnerability, which may allow an attacker to perform actions with the permissions of a victim user.
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "DexGate",
"vendor": "DEXMA",
"versions": [
{
"status": "affected",
"version": "version 20130114"
}
]
}
]Related
cve
cve
CVE-2023-42435
2023-10-19 19:15:15
nvd
nvd
CVE-2023-42435
2023-10-19 19:15:15
prion
prion
Cross site request forgery (csrf)
2023-10-19 19:15:00
ics
ics
DEXMA DexGate
2023-09-28 12:00:00
5.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L
8.8 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
24.1%
Related for CVELIST:CVE-2023-42435