CVE-2023-48258 | Rexroth Nexo Cordless Nutrunner up to V1500-SP2 URL cross-site request forgery

Posted by Angelo Barbosa | Jan 10, 2024 | CVE

A vulnerability was found in Rexroth Nexo Cordless Nutrunner and Nexo Special Cordless Nutrunner up to V1500-SP2. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component URL Handler. The manipulation leads to cross-site request forgery.

This vulnerability is known as CVE-2023-48258. The attack can be launched remotely. There is no exploit available.

CVE-2023-48258 | Rexroth Nexo Cordless Nutrunner up to V1500-SP2 URL cross-site request forgery

Related Posts

CVE-2023-5992 | OpenSC prior 0.24.0 PKCS#1 Padding information exposure

CVE-2024-4609 | Rockwell Automation FactoryTalk View SE up to 13 Datalog sql injection

CVE-2023-49804 | louislam uptime-kuma up to 1.23.8 Password Change session fixiation (GHSA-88j4-pcx8-q4q3)

CVE-2023-46455 | GL.iNet GL-AR300M up to 4.3.7 OpenVPN Client File Upload path traversal