Sielco PolyEco1000 is vulnerable to an attacker bypassing authorization and accessing resources behind protected pages. The application interface allows users to perform certain actions via HTTP requests without performing any validity checks to verify the requests.
References
Link | Resource |
---|---|
https://www.cisa.gov/news-events/ics-advisories/icsa-23-299-07 | Third Party Advisory US Government Resource |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: icscert
Published: 2023-10-26T20:02:24.004Z
Updated: 2023-10-26T20:02:24.004Z
Reserved: 2023-10-24T16:27:17.282Z
Link: CVE-2023-46663
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-10-26T21:15:07.903
Modified: 2023-11-07T16:13:11.643
Link: CVE-2023-46663
JSON object: View
Redhat Information
No data.