One Article Review
| Source |  CVE Liste |
|---|---|
| Identifiant | 8335736 |
| Date de publication | 2023-05-11 19:15:09 (vue: 2023-05-11 21:06:58) |
| Titre | CVE-2023-2444 |
| Texte | A cross site request forgery vulnerability exists in Rockwell Automation\'s FactoryTalk Vantagepoint. This vulnerability can be exploited in two ways. If an attacker sends a malicious link to a computer that is on the same domain as the FactoryTalk Vantagepoint server and a user clicks the link, the attacker could impersonate the legitimate user and send requests to the affected product.  Additionally, if an attacker sends an untrusted link to a computer that is not on the same domain as the server and a user opens the FactoryTalk Vantagepoint website, enters credentials for the FactoryTalk Vantagepoint server, and clicks on the malicious link a cross site request forgery attack would be successful as well.
A cross site request forgery vulnerability exists in Rockwell Automation\'s FactoryTalk Vantagepoint. This vulnerability can be exploited in two ways. If an attacker sends a malicious link to a computer that is on the same domain as the FactoryTalk Vantagepoint server and a user clicks the link, the attacker could impersonate the legitimate user and send requests to the affected product.  Additionally, if an attacker sends an untrusted link to a computer that is not on the same domain as the server and a user opens the FactoryTalk Vantagepoint website, enters credentials for the FactoryTalk Vantagepoint server, and clicks on the malicious link a cross site request forgery attack would be successful as well. |
| Notes | |
| Envoyé | Oui |
| Condensat | 2023 2444 affected attack attacker automation beexploited can clicks computer could credentials cross cve domain enters exists factorytalk forgery impersonate legitimate link malicious not opens product request requests rockwell same send sends server site successful two untrusted user vantagepoint vulnerability ways website well would â â additionally |
| Tags | Vulnerability |
| Stories | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.