Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8
CVE-2024-39275
- EPSS 0.11%
- Published 27.09.2024 18:15:05
- Last modified 07.10.2024 15:25:17
Cookies of authenticated Advantech ADAM-5630 users remain as active valid cookies when a session is closed. Forging requests with a legitimate cookie, even if the session was terminated, allows an unauthorized attacker to act with the same level o...
8.8
CVE-2024-28948
- EPSS 0.04%
- Published 27.09.2024 18:15:04
- Last modified 04.10.2024 18:58:14
Advantech ADAM-5630 contains a cross-site request forgery (CSRF) vulnerability. It allows an attacker to partly circumvent the same origin policy, which is designed to prevent different websites from interfering with each other.
5.7
CVE-2024-34542
- EPSS 0.04%
- Published 27.09.2024 18:15:04
- Last modified 07.10.2024 15:20:34
Advantech ADAM-5630 shares user credentials plain text between the device and the user source device during the login process.
1