Security Advisory

CVE-2021-29660

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-04-02 18:42:02

Last updated 2024-08-03 22:11:06

Assigner mitre

State PUBLISHED

Description

A Cross-Site Request Forgery (CSRF) vulnerability in en/cfg_setpwd.html in Softing AG OPC Toolbox through 4.10.1.13035 allows attackers to reset the administrative password by inducing the Administrator user to browse a URL controlled by an attacker.

← Browse all CVEs View on cve.org ↗