The cross-site request forgery token in the request may be predictable or easily guessable allowing attackers to craft a malicious request, which could be triggered by a victim unknowingly. In a successful CSRF attack, the attacker could lead the victim user to carry out an action unintentionally.
2024-02-06T22:16:12.910
2024-11-21T08:13:52.073
Modified
CVSSv3.1: 8.0 (HIGH)
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | westermo | l206-f2g_firmware | 4.24 | Yes |
| Hardware | westermo | l206-f2g | - | No |