CVE-2023-6093
OnCell G3150A-LTE Series: Clickjacking Vulnerability
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
A clickjacking vulnerability has been identified in OnCell G3150A-LTE Series firmware versions v1.3 and prior. This vulnerability is caused by incorrectly restricts frame objects, which can lead to user confusion about which interface the user is interacting with. This vulnerability may lead the attacker to trick the user into interacting with the application.
Se ha identificado una vulnerabilidad en las versiones de firmware de la serie OnCell G3150A-LTE v1.3 y anteriores. La vulnerabilidad es el resultado de restringir incorrectamente los objetos del frame, lo que genera confusión en el usuario sobre con qué interfaz está interactuando. Esta vulnerabilidad puede llevar al atacante a engañar al usuario para que interactúe con la aplicación.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2023-11-13 CVE Reserved
- 2023-12-31 CVE Published
- 2024-01-09 EPSS Updated
- 2024-08-02 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-1021: Improper Restriction of Rendered UI Layers or Frames
CAPEC
- CAPEC-103: Clickjacking
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Moxa Search vendor "Moxa" | Oncell G3150a-lte Firmware Search vendor "Moxa" for product "Oncell G3150a-lte Firmware" | <= 1.3 Search vendor "Moxa" for product "Oncell G3150a-lte Firmware" and version " <= 1.3" | - |
Affected
| in | Moxa Search vendor "Moxa" | Oncell G3150a-lte Search vendor "Moxa" for product "Oncell G3150a-lte" | - | - |
Safe
|