Products
Alps System Integration products
OEM products
Source
vultures@jpcert.or.jp
Tags
CVE-2024-45504 details
Published : Sept. 10, 2024, 5:15 a.m.
Last Modified : Sept. 10, 2024, 12:09 p.m.
Last Modified : Sept. 10, 2024, 12:09 p.m.
Description
Cross-site request forgery (CSRF) vulnerability in multiple Alps System Integration products and the OEM products allow a remote unauthenticated attacker to hijack the authentication of the user and to perform unintended operations if the user views a malicious page while logged in.
CVSS Score
1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 |
---|
Weakness
Weakness | Name | Description |
---|
References
URL | Source |
---|---|
https://alsifaq.dga.jp/faq_detail.html?id=6494 | vultures@jpcert.or.jp |
https://jvn.jp/en/jp/JVN05579230/ | vultures@jpcert.or.jp |
https://success.trendmicro.com/ja-JP/solution/KA-0017618 | vultures@jpcert.or.jp |
https://www.motex.co.jp/news/notice/2024/release240909/ | vultures@jpcert.or.jp |
This website uses the NVD API, but is not approved or certified by it.