2 matches found
CVE-2023-4659 Cross-Site Request Forgery in Free5Gc
Cross-Site Request Forgery vulnerability, whose exploitation could allow an attacker to perform different actions on the platform as an administrator, simply by changing the token value to "admin". It is also possible to perform POST, GET and DELETE requests without any token value. Therefore, an...
CVE-2023-4659
The CVE-2023-4659 CSRF issue affects Free5GC, where an attacker can impersonate an administrator and perform POST/GET/DELETE actions without a token. Affected: Free5GC components exposing admin-level actions via CSRF with token value manipulations (e.g., setting token to 'admin'); impact: unprivi...