Cross-Site Request Forgery Vulnerability in Schneider Electric Conext™ ComBox
CVE-2022-32516
7.5HIGH
What is CVE-2022-32516?
A Cross-Site Request Forgery (CSRF) vulnerability has been identified in Schneider Electric's Conext™ ComBox, which may allow attackers to exploit the system by sending unauthorized HTTP requests. This could lead to serious configurations being overridden, potentially resulting in a continuous reboot loop of the system. The flaw affects all versions of the Conext™ ComBox and requires immediate attention to secure the affected systems.
Affected Version(s)
Conext™ ComBox All Versions