The Siemens web application RUGGEDCOM NMS < V1.2 on port 8080/TCP and 8081/TCP could allow a remote attacker to perform a Cross-Site Request Forgery (CSRF) attack, potentially allowing an attacker to execute administrative operations, provided the targeted user has an active session and is induced to trigger a malicious request.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: siemens
Published: 2017-02-27T11:00:00
Updated: 2024-08-05T14:02:07.157Z
Reserved: 2016-12-01T00:00:00
Link: CVE-2017-2682
Vulnrichment
No data.
NVD
Status : Modified
Published: 2017-02-27T11:59:00.150
Modified: 2017-07-17T13:18:24.877
Link: CVE-2017-2682
Redhat
No data.