PT-2022-27447 · Dragino · Dragino Lora Lg01
Published
2022-12-12
·
Updated
2022-12-13
·
CVE-2022-45228
CVSS v3.1
3.5
Low
| Vector | AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
Dragino Lora LG01 18ed40 IoT version 4.3.4
Description
A Cross-Site Request Forgery issue was discovered in the logout page of the affected software.
Recommendations
For Dragino Lora LG01 18ed40 IoT version 4.3.4, consider disabling the logout functionality until a patch is available to prevent potential exploitation.
Exploit
Fix
CSRF
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Dragino Lora Lg01