CVE-2024-53684 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A cross-site request forgery (csrf) vulnerability exists in the WEBVIEW-M functionality of Socomec DIRIS Digiware M-70 1.6.9. A specially crafted HTTP request c…
High CVSS: 7.5

CVE-2024-53684

A cross-site request forgery (csrf) vulnerability exists in the WEBVIEW-M functionality of Socomec DIRIS Digiware M-70 1.6.9. A specially crafted HTTP request can lead to unauthorized access. An attacker can stage a malicious webpage to trigger this vulnerability.
Vendor
Socomec
Product
Diris M-70 Firmware
CWE
CWE-352
Yayın Tarihi
2025-12-01 16:15:50
Güncelleme
2025-12-05 21:10:42
Source Identifier
talos-cna@cisco.com
KEV Date Added
-

Kategoriler

CWE-352 Diris M-70 Firmware HIGH Socomec 2025

Referanslar

https://talosintelligence.com/vulnerability_reports/TALOS-2024-2116 https://www.socomec.fr/sites/default/files/2025-10/CVE-2024-53684---Diris-Digiware-Mxx-Dxx-_VULNERABILITIES_2025-10-01-16-43-14_English_0.pdf https://www.talosintelligence.com/vulnerability_reports/TALOS-2024-2116