CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-41795

A vulnerability has been identified in SENTRON 7KT PAC1260 Data Manager (All versions). The web interface of affected devices is vulnerable to Cross-Site Request Forgery (CSRF) attacks. This could allow an unauthenticated attacker to change arbitrary device settings by tricking a legitimate device administrator to click on a malicious link.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 5.7%

CVSS Severity

CVSS v3 Score 6.5

References

https://cert-portal.siemens.com/productcert/html/ssa-187636.html

Products affected by CVE-2024-41795

Siemens » 7kt Pac1260 Data Manager » Version: N/A

cpe:2.3:h:siemens:7kt_pac1260_data_manager:-
Siemens » 7kt Pac1260 Data Manager Firmware » Version: Any

cpe:2.3:o:siemens:7kt_pac1260_data_manager_firmware:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-41795

Products

Pricing

Contact Us