An issue was discovered in Cassia Access Controller 2.1.1.2303271039. Establishing a web SSH session to gateways is vulnerable to Cross Site Request Forgery (CSRF) attacks.
References
Link | Resource |
---|---|
https://blog.kscsc.online/cves/202335793/md.html | |
https://github.com/Dodge-MPTC/CVE-2023-35793-CSRF-On-Web-SSH | Exploit Third Party Advisory |
https://www.cassianetworks.com/products/iot-access-controller/ | Product |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2023-09-26T00:00:00
Updated: 2024-01-29T20:35:15.767100
Reserved: 2023-06-16T00:00:00
Link: CVE-2023-35793
JSON object: View
NVD Information
Status : Modified
Published: 2023-09-27T15:18:52.857
Modified: 2024-01-29T21:15:08.437
Link: CVE-2023-35793
JSON object: View
Redhat Information
No data.
CWE