CVE-2024-8458

Name of the Vulnerable Software and Affected Versions: PLANET Technology switch models (affected versions not specified)

Description: The web application of certain switch models from PLANET Technology is vulnerable to Cross-Site Request Forgery (CSRF). An unauthenticated remote attacker can trick a user into visiting a malicious website, allowing the attacker to impersonate the user and perform actions on their behalf, such as creating accounts.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.