Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2023-22286
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Cross-site request forgery (CSRF) vulnerability in MAHO-PBX NetDevancer Lite/Uni/Pro/Cloud prior to Ver.1.11.00, MAHO-PBX NetDevancer VSG Lite/Uni prior to Ver.1.11.00, and MAHO-PBX NetDevancer MobileGate Home/Office prior to Ver.1.11.00 allows a remote unauthenticated attacker to hijack the user authentication and conduct user's unintended operations by having a user to view a malicious page while logged in.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
MAHO-PBX NetDevancer series 跨站请求伪造漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
MAHO-PBX NetDevancer series是日本MAHO-PBX公司的一个 IP-PBX 系统。 MAHO-PBX NetDevancer series 存在安全漏洞,该漏洞源于在Management screen存在跨站请求伪造(CSRF),攻击者利用该漏洞可能会诱导用户在登录时查看恶意页面,执行意外操作,以下产品和版本受到影响:MAHO-PBX NetDevancer Lite/Uni/Pro/Cloud Ver.1.11.00 之前版本、 MAHO-PBX NetDevancer Mob
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
VendorProductAffected VersionsCPESubscribe
Mahoroba Kobo, Inc.MAHO-PBX NetDevancer series MAHO-PBX NetDevancer Lite/Uni/Pro/Cloud prior to Ver.1.11.00, MAHO-PBX NetDevancer VSG Lite/Uni prior to Ver.1.11.00, and MAHO-PBX NetDevancer MobileGate Home/Office prior to Ver.1.11.00 -
II. Public POCs for CVE-2023-22286
#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC
III. Intelligence Information for CVE-2023-22286
Please Login to view more intelligence information
IV. Related Vulnerabilities
Same product: MAHO-PBX NetDevancer series
Same vendor: Mahoroba Kobo, Inc.
V. Comments for CVE-2023-22286

No comments yet

Leave a comment