CVE-2023-24518
Disabling the administrator's account through cross-site request forgery
A Cross-site Request Forgery (CSRF) vulnerability in Pandora FMS allows an attacker to force authenticated users to send a request to a web application they are currently authenticated against. This issue affects Pandora FMS version 767 and earlier versions on all platforms.
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:L
Productos afectados
Artica PFMS · Pandora FMS¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →