How severe is CVE-2023-41084?

CVE-2023-41084 has a CVSS v3 score of 10 (CRITICAL).

CVE-2023-41084

Name: modulys_gp
Author: socomec

10.0CRITICAL

Session management within the web application is incorrect and allows attackers to steal session cookies to perform a multitude of actions that the web app allows on the device.

Published: 9/18/2023Updated: 11/21/2024

Description

Session management within the web application is incorrect and allows attackers to steal session cookies to perform a multitude of actions that the web app allows on the device.

AI AnalysisPowered by AI

Affected Products

socomecmodulys_gp_firmware

01.12.10

socomecmodulys_gp

References

https://www.cisa.gov/news-events/ics-advisories/icsa-23-250-03
Third Party AdvisoryUS Government Resource
https://www.cisa.gov/news-events/ics-advisories/icsa-23-250-03
Third Party AdvisoryUS Government Resource