Security Advisory

CVE-2023-38999

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-08-09 00:00:00
Last updated 2024-10-10 15:36:58
Assigner mitre
State PUBLISHED

Description

A Cross-Site Request Forgery (CSRF) in the System Halt API (/system/halt) of OPNsense Community Edition before 23.7 and Business Edition before 23.4.2 allows attackers to cause a Denial of Service (DoS) via a crafted GET request.