- Description
- Cross-site request forgery (CSRF) vulnerability in NEC Corporation UNIVERGE IX from Ver9.2 to Ver10.10.21, for Ver10.8 up to Ver10.8.27 and for Ver10.9 up to Ver10.9.14 allows a attacker to hijack the authentication of screens on the device via the management interface.
- Source
- psirt-info@cyber.jp.nec.com
- NVD status
- Received
CVSS 3.1
- Type
- Secondary
- Base score
- 4.3
- Impact score
- 1.4
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
- Severity
- MEDIUM
- psirt-info@cyber.jp.nec.com
- CWE-352
- Hype score
- Not currently trending
JVN#53958863: UNIVERGE IX/IX-R/IX-Vシリーズルータにおける複数の脆弱性 https://t.co/lFTCUwtOmP ”影響を受けるシステム CVE-2024-11013 UNIVERGE IXシリーズ UNIVERGE IX-R/IX-Vシリーズ CVE-2024-11014 UNIVERGE IXシリーズ”
@catnap707
2 Dec 2024
192 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-11014 CSRF Vulnerability in NEC UNIVERGE IX Enabling Authentication Hijack There's a Cross-site request forgery (CSRF) vulnerability in NEC Corporation UNIVERGE IX. This affects versions from Ver9.2 to V... https://t.co/YEG6nidE3U
@VulmonFeeds
30 Nov 2024
37 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-11014 Cross-site request forgery (CSRF) vulnerability in NEC Corporation UNIVERGE IX from Ver9.2 to Ver10.10.21, for Ver10.8 up to Ver10.8.27 and for Ver10.9 up to Ver10.9.… https://t.co/Ltxqld6HMG
@CVEnew
29 Nov 2024
2 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes