CVE-2023-6689 Information

Description

A successful CSRF attack could force the user to perform state changing requests on the application. If the victim is an administrative account a CSRF attack could compromise the entire web application.

Reference

https://www.cisa.gov/news-events/ics-advisories/icsa-23-353-02