CVE-2023-22286

Name of the Vulnerable Software and Affected Versions MAHO-PBX NetDevancer Lite/Uni/Pro/Cloud versions prior to 1.11.00 MAHO-PBX NetDevancer VSG Lite/Uni versions prior to 1.11.00 MAHO-PBX NetDevancer MobileGate Home/Office versions prior to 1.11.00

Description A cross-site request forgery (CSRF) issue allows a remote unauthenticated attacker to hijack user authentication and conduct unintended operations by having a user view a malicious page while logged in.

Recommendations For MAHO-PBX NetDevancer Lite/Uni/Pro/Cloud versions prior to 1.11.00, update to version 1.11.00 or later. For MAHO-PBX NetDevancer VSG Lite/Uni versions prior to 1.11.00, update to version 1.11.00 or later. For MAHO-PBX NetDevancer MobileGate Home/Office versions prior to 1.11.00, update to version 1.11.00 or later.