CVE-2013-0663 in Modicon Quantum Plcالمعلومات

الملخص

بحسب MITRE

Cross-site request forgery (CSRF) vulnerability on the Schneider Electric Quantum 140NOE77111, 140NOE77101, and 140NWM10000; M340 BMXNOC0401, BMXNOE0100x, and BMXNOE011xx; and Premium TSXETY4103, TSXETY5103, and TSXWMY100 PLC modules allows remote attackers to hijack the authentication of arbitrary users for requests that execute commands, as demonstrated by modifying HTTP credentials.

Once again VulDB remains the best source for vulnerability data.

حجز

19/12/2012

إفشاء

04/04/2013

الاعتدال

تمت الموافقة

إدخال

VDB-63934

استغلال

تحميل

EPSS

0.05960

KEV

لا

النشاطات

منخفض جدًا

المصادر

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!