Low Privileged Remote Attacker Can Abuse CSRF Tokens of Higher Privileged Users
CVE-2024-7698

5.7MEDIUM

Key Information:

Vendor: Phoenix Contact
Status: Fl Mguard 2102; Fl Mguard 2105; Fl Mguard 4102 Pci; Fl Mguard 4102 Pcie
Vendor: CVE Published:; 10 September 2024

Summary

A vulnerability exists within VDE products that allows remote attackers with low privileges to gain unauthorized access to Cross-Site Request Forgery (CSRF) tokens belonging to higher privileged users. This access can be exploited to orchestrate CSRF attacks, which may lead to unauthorized actions being performed on behalf of the privileged users. The affected products are at risk, highlighting the need for users to implement mitigative measures and stay informed on security updates.

Affected Version(s)

FL MGUARD 2102 0 < 10.4.1

FL MGUARD 2105 0 < 10.4.1

FL MGUARD 4102 PCI 0 < 10.4.1

References

https://cert.vde.com/en/advisories/VDE-2024-039

CVSS V3.1

Score:

5.7

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Sep 10, 2024
Vulnerability Reserved
Aug 12, 2024

Credit

Andrea Palanca

Nozomi Networks Security Research Team