4 matches found
CVE-2023-41084
creationtimestamp| type| source ---|---|--- 2023-09-19 05:17:25+00:00| seen| https://t.me/cibsecurity/70673...
CVE-2023-41084
Session management within the web application is incorrect and allows attackers to steal session cookies to perform a multitude of actions that the web app allows on the device...
CVE-2023-41084
Summary: CVE-2023-41084 is a high-severity vulnerability in Socomec MODULYS GP web interface (MOD3GP-SY-120K) caused by incorrect session management that can allow an attacker to steal session cookies and perform actions on the device. Public sources describe a web-only vector with remote exposur...
CVE-2023-41084 Socomec MOD3GP-SY-120K Reliance on Cookies without Validation and Integrity Checking
Session management within the web application is incorrect and allows attackers to steal session cookies to perform a multitude of actions that the web app allows on the device...