CVE-2022-32516

Name of the Vulnerable Software and Affected Versions Conext ComBox (All Versions)

Description A Cross-Site Request Forgery (CSRF) issue exists, potentially allowing an attacker to override system configurations and cause a reboot loop through a specially crafted POST request. This could lead to a denial of service.

Recommendations For Conext ComBox, consider disabling the ability to accept POST requests from external sources as a temporary workaround until a patch is available. Restrict access to the device's configuration interface to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.