CVE-2023-32791

Name of the Vulnerable Software and Affected Versions NXLog Manager version 5.6.5633

Description A Cross-Site Request Forgery (CSRF) issue allows an attacker to manipulate and delete user accounts within the platform by sending a specifically crafted query to the server. This is due to the lack of proper validation of the origin of incoming requests.

Recommendations For NXLog Manager version 5.6.5633, consider disabling access to user account management features until a patch is available to prevent exploitation of the CSRF vulnerability. Restrict access to the server to minimize the risk of malicious queries being sent. Avoid using the platform for sensitive operations until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.