CVE-2024-0555
CVSS V2 None
CVSS V3 None
Description
A Cross-Site Request Forgery (CSRF) vulnerability has been found on WIC1200, affecting version 1.1. An authenticated user could lead another user into executing unwanted actions inside the application they are logged in. This vulnerability is possible due to the lack of propper CSRF token implementation.
Overview
- CVE ID
- CVE-2024-0555
- Assigner
- INCIBE
- Vulnerability Status
- PUBLISHED
- Published Version
- 2024-01-16T10:09:58.665Z
- Last Modified Date
- 2024-01-16T10:09:58.665Z
Weakness Enumerations
References
| Reference URL | Reference Tags |
|---|---|
| https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-full-compass-systems-wic1200 |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2024-0555 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0555 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2024-06-26 09:38:54 | Added to TrackCVE |