CVE-2016-4506

HIGH

Resource Data Management Intuitive 650 TDB Controller < 2.1 - Authenticated Cross-Site Request Forgery

Title source: llm
STIX 2.1

Description

Cross-site request forgery (CSRF) vulnerability on Resource Data Management (RDM) Intuitive 650 TDB Controller devices before 2.1.24 allows remote authenticated users to hijack the authentication of arbitrary users.

References (1)

Core 1
Core References
Third Party Advisory, US Government Resource x_refsource_misc
https://ics-cert.us-cert.gov/advisories/ICSA-16-140-01

Scores

CVSS v3 8.0
EPSS 0.0052
EPSS Percentile 40.4%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

Details

CWE
CWE-352
Status published
Products (1)
resourcedm/intuitive_650_tdb_controller < 2.1
Published May 31, 2016
Tracked Since Feb 18, 2026