CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-53684

A cross-site request forgery (csrf) vulnerability exists in the WEBVIEW-M functionality of Socomec DIRIS Digiware M-70 1.6.9. A specially crafted HTTP request can lead to unauthorized access. An attacker can stage a malicious webpage to trigger this vulnerability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 16.0%

CVSS Severity

CVSS v3 Score 7.5

References

https://talosintelligence.com/vulnerability_reports/TALOS-2024-2116
https://www.socomec.fr/sites/default/files/2025-10/CVE-2024-53684---Diris-Digiware-Mxx-Dxx-_VULNERABILITIES_2025-10-01-16-43-14_English_0.pdf
https://www.talosintelligence.com/vulnerability_reports/TALOS-2024-2116

Products affected by CVE-2024-53684

Socomec » Diris M-70 » Version: N/A

cpe:2.3:h:socomec:diris_m-70:-
Socomec » Diris M-70 Firmware » Version: 1.6.9

cpe:2.3:o:socomec:diris_m-70_firmware:1.6.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-53684

Products

Pricing

Contact Us