Dodge Industrial Team - Security Researcher - Exploit Intelligence Platform

CVE-2023-35793 NOMISEC HIGH WRITEUP

Cassia Access Controller 2.1.1.2303271039 - Cross-Site Request Forgery in Web SSH Session

An issue was discovered in Cassia Access Controller 2.1.1.2303271039. Establishing a web SSH session to gateways is vulnerable to Cross Site Request Forgery (CSRF) attacks.

6 stars

CVSS 8.8

View Code

CVE-2023-31446 NOMISEC CRITICAL WRITEUP

Cassia Gateway firmware - Code Injection

In Cassia Gateway firmware XC1000_2.1.1.2303082218 and XC2000_2.1.1.2303090947, the queueUrl parameter in /bypass/config is not sanitized. This leads to injecting Bash code and executing it with root privileges on device startup.

4 stars

CVSS 9.8

View Code

CVE-2023-35794 NOMISEC HIGH WRITEUP

Cassia Access Controller 2.1.1.2303271039 - Unauthenticated Web SSH Terminal Access

An issue was discovered in Cassia Access Controller 2.1.1.2303271039. The Web SSH terminal endpoint (spawned console) can be accessed without authentication. Specifically, there is no session cookie validation on the Access Controller; instead, there is only Basic Authentication to the SSH console.

3 stars

CVSS 8.8

View Code

CVE-2023-31445 NOMISEC MEDIUM WRITEUP

Cassia Access controller <2.1.1.2203171453 - Info Disclosure

Cassia Access controller before 2.1.1.2203171453, was discovered to have a unprivileged -information disclosure vulnerability that allows read-only users have the ability to enumerate all other users and discover e-mail addresses, phone numbers, and privileges of all other users.

1 stars

CVSS 5.3

View Code