NVD Vulnerability Detail

Search Exploit, PoC

Exploit DB

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2026-8604

Summary	In ScadaBR version 1.2.0, a CSRF vulnerability could allow an attacker to trigger any authenticated action through a victim's session by luring any logged-in user to a malicious webpage.
Publication Date	May 20, 2026, 3:16 a.m.
Registration Date	May 20, 2026, 4:13 a.m.
Last Update	May 20, 2026, 3:16 a.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://www.cisa.gov/news-events/ics-advisories/icsa-26-139-03	ics-cert@hq.dhs.gov

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-352	クロスサイト・リクエスト・フォージェリ（CSRF）	https://cwe.mitre.org/data/definitions/352.html
2	CWE-352	同一生成元ポリシー違反	https://cwe.mitre.org/data/definitions/346.html