CVE-2023-6093

Name of the Vulnerable Software and Affected Versions OnCell G3150A-LTE Series firmware versions v1.3 and prior

Description A clickjacking vulnerability has been identified, caused by incorrectly restricting frame objects. This can lead to user confusion about which interface the user is interacting with, allowing an attacker to trick the user into interacting with the application.

Recommendations For OnCell G3150A-LTE Series firmware versions v1.3 and prior, consider disabling any functionality that allows frame objects to be embedded within the application's interface until a patch is available. Restrict access to the application to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.