Cross Site Request Forgery (CSRF) vulnerability in Chalet application in Extreme Networks Switch Engine (EXOS) before 32.5.1.5, fixed in 31.7.2 and 32.5.1.5 allows attackers to run arbitrary code and cause other unspecified impacts via /jsonrpc API.
History

Wed, 18 Sep 2024 08:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2023-10-16T00:00:00

Updated: 2024-09-17T16:20:09.362Z

Reserved: 2023-09-18T00:00:00

Link: CVE-2023-43118

cve-icon Vulnrichment

Updated: 2024-08-02T19:37:22.973Z

cve-icon NVD

Status : Modified

Published: 2023-10-16T20:15:15.100

Modified: 2024-11-21T08:23:43.437

Link: CVE-2023-43118

cve-icon Redhat

No data.