Security Advisory

CVE-2013-0663

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2013-04-04 10:00:00

Last updated 2024-08-06 14:33:05

Assigner icscert

State PUBLISHED

Description

Cross-site request forgery (CSRF) vulnerability on the Schneider Electric Quantum 140NOE77111, 140NOE77101, and 140NWM10000; M340 BMXNOC0401, BMXNOE0100x, and BMXNOE011xx; and Premium TSXETY4103, TSXETY5103, and TSXWMY100 PLC modules allows remote attackers to hijack the authentication of arbitrary users for requests that execute commands, as demonstrated by modifying HTTP credentials.

← Browse all CVEs View on cve.org ↗