Lucene search
K

4 matches found

Circl
Circl
added 2024/02/06 11:31 p.m.6 views

CVE-2023-38579

creationtimestamp| type| source ---|---|--- 2024-02-06 23:31:21+00:00| seen| https://t.me/ctinow/180394 2024-02-17 13:41:30+00:00| seen| https://t.me/ctinow/186919...

8.8CVSS8.1AI score0.00232EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/02/06 9:16 p.m.13 views

CVE-2023-38579 Westermo Lynx 206-F2G Cross-Site Request Forgery

The cross-site request forgery token in the request may be predictable or easily guessable allowing attackers to craft a malicious request, which could be triggered by a victim unknowingly. In a successful CSRF attack, the attacker could lead the victim user to carry out an action unintentionally...

8CVSS6.7AI score0.00232EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/02/06 9:16 p.m.22 views

CVE-2023-38579 Westermo Lynx 206-F2G Cross-Site Request Forgery

The cross-site request forgery token in the request may be predictable or easily guessable allowing attackers to craft a malicious request, which could be triggered by a victim unknowingly. In a successful CSRF attack, the attacker could lead the victim user to carry out an action unintentionally...

8CVSS8.8AI score0.00232EPSS
Exploits0References1
CVE
CVE
added 2024/02/06 9:16 p.m.42 views

CVE-2023-38579

Westermo Lynx 206-F2G devices are affected by CVE-2023-38579, a Cross-Site Request Forgery (CSRF) vulnerability where the CSRF token can be predictable, enabling an attacker to craft malicious requests that a victim may trigger. Public documentation (CISA ICS advisory) confirms the vulnerability ...

8.8CVSS8.5AI score0.00232EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder