How severe is CVE-2023-41084?

CVE-2023-41084 has a CVSS v3 score of 10 (CRITICAL).

CVE-2023-41084

Name: modulys_gp
Author: socomec

10.0CRITICAL

Session management within the web application is incorrect and allows attackers to steal session cookies to perform a multitude of actions that the web app allows on the device.

Опубликовано: 9/18/2023Обновлено: 11/21/2024

Описание

Session management within the web application is incorrect and allows attackers to steal session cookies to perform a multitude of actions that the web app allows on the device.

ИИ-АнализНа базе ИИ

Затронутые продукты

socomecmodulys_gp_firmware

01.12.10

socomecmodulys_gp

Ссылки

https://www.cisa.gov/news-events/ics-advisories/icsa-23-250-03
Third Party AdvisoryUS Government Resource
https://www.cisa.gov/news-events/ics-advisories/icsa-23-250-03
Third Party AdvisoryUS Government Resource