CSRF Vulnerability in NASA Open MCT Allows Unauthorized Access to Sensitive Information

CVE-2023-45884 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Cross Site Request Forgery (CSRF) vulnerability in NASA Open MCT (aka openmct) through 3.1.0 allows attackers to view sensitive information via the flexibleLayout plugin.

Learn more about our Web Application Penetration Testing UK.