CVSS Score of 10 (low)


Published Jul 7, 2023
Updated: Jul 13, 2023
CWE ID 352


CVE-2023-35120 is a vulnerability affecting PiiGAB M-Bus. This vulnerability allows for cross-site request forgery, where an attacker can send a phishing email to the device owner and trick them into clicking on a malicious link. If the owner has a stored cookie that enables them to be logged in, the device could execute the requested link. This vulnerability poses a high risk to organizations as it could result in unauthorized access, compromise of sensitive information, and potential unauthorized commands being executed on affected devices. It is important for users of PiiGAB M-Bus to be cautious of phishing emails and ensure they have proper security measures in place to mitigate this vulnerability.


Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-35120 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options