How severe is CVE-2023-41084?

CVE-2023-41084 has a CVSS v3 score of 10 (CRITICAL).

CVE-2023-41084

Name: modulys_gp
Author: socomec

10.0CRITICAL

Session management within the web application is incorrect and allows attackers to steal session cookies to perform a multitude of actions that the web app allows on the device.

Publicado: 9/18/2023Actualizado: 11/21/2024

Descripción

Session management within the web application is incorrect and allows attackers to steal session cookies to perform a multitude of actions that the web app allows on the device.

Análisis IAImpulsado por IA

Productos Afectados

socomecmodulys_gp_firmware

01.12.10

socomecmodulys_gp

Referencias

https://www.cisa.gov/news-events/ics-advisories/icsa-23-250-03
Third Party AdvisoryUS Government Resource
https://www.cisa.gov/news-events/ics-advisories/icsa-23-250-03
Third Party AdvisoryUS Government Resource