EUVD-2023-28536

ID: EUVD-2023-28536

Severity: medium

CVSS v4: Not provided

CVSS v3: 6.7 (CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:L)

CWE: None listed

Source: ENISA

Description

A Cross-site Request Forgery (CSRF) vulnerability in Pandora FMS allows an attacker to force authenticated users to send a request to a web application they are currently authenticated against. This issue affects Pandora FMS version 767 and earlier versions on all platforms.

Timestamps

Normalized: 2025-12-31T11:32:27Z UTC
Last updated: 2025-12-31T11:30:44Z UTC

References

No references provided.

VulnAI

EUVD-2023-28536

Description

Timestamps

References