CVE-2023-22286

Cross-site request forgery (CSRF) vulnerability in MAHO-PBX NetDevancer Lite/Uni/Pro/Cloud prior to Ver.1.11.00, MAHO-PBX NetDevancer VSG Lite/Uni prior to Ver.1.11.00, and MAHO-PBX NetDevancer MobileGate Home/Office prior to Ver.1.11.00 allows a remote unauthenticated attacker to hijack the user authentication and conduct user's unintended operations by having a user to view a malicious page while logged in.
References
Configurations

Configuration 1


Information

Published : 2023-01-17 10:15

Updated : 2023-01-24 08:10


NVD link : CVE-2023-22286

Mitre link : CVE-2023-22286

Products Affected
No products.
CWE