Vulnerabilities > CVE-2023-47677

CVSS 8.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

realtek

level1

NVD

Published: 2024-07-08

Updated: 2024-11-21

Summary

A cross-site request forgery (csrf) vulnerability exists in the boa CSRF protection functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted network request can lead to CSRF. An attacker can send an HTTP request to trigger this vulnerability.

Vulnerable Configurations

Part	Description	Count
Application	Realtek Realtek Rtl819X Jungle Software Development KIT 3.4.11	1
OS	Level1 Level1 WBR 6013 Firmware Rer4_A_V3411B_2T2R_Lev_09_170623	1
Hardware	Level1 Level1 WBR 6013 -	1

References

https://talosintelligence.com/vulnerability_reports/TALOS-2023-1872
https://talosintelligence.com/vulnerability_reports/TALOS-2023-1872

Vulnerabilities > CVE-2023-47677 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"CVE-2023-47677"}]}

Summary

Vulnerable Configurations

References

Vulnerabilities > CVE-2023-47677