Vulnerability CVE-2024-4600
Published: 2024-05-07

Description:
Cross-Site Request Forgery vulnerability in Socomec Net Vision, version 7.20. This vulnerability could allow an attacker to trick registered users into performing critical actions, such as adding and updating accounts, due to lack of proper sanitisation of the ??set_param.cgi?? file.

Type:

CWE-352

 (Cross-Site Request Forgery (CSRF))

 References:
https://www.incibe.es/en/incibe-cert/notices/aviso-sci/multiple-vulnerabilities-socomec-net-vision
Copyright 2026, cxsecurity.com

 

Back to Top