CVE-2024-35207
CVSS V2 None
CVSS V3 None
Description
A vulnerability has been identified in SINEC Traffic Analyzer (6GK8822-1BG01-0BA0) (All versions < V1.2). The web interface of the affected devices are vulnerable to Cross-Site Request Forgery(CSRF) attacks. By tricking an authenticated victim user to click a malicious link, an attacker could perform arbitrary actions on the device on behalf of the victim user.
Overview
- CVE ID
- CVE-2024-35207
- Assigner
- siemens
- Vulnerability Status
- PUBLISHED
- Published Version
- 2024-06-11T11:15:47.708Z
- Last Modified Date
- 2024-06-11T16:55:45.445Z
Weakness Enumerations
References
| Reference URL | Reference Tags |
|---|---|
| https://cert-portal.siemens.com/productcert/html/ssa-196737.html |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2024-35207 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-35207 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2024-06-26 13:27:57 | Added to TrackCVE |