ID
VAR-202404-3637
CVE
CVE-2024-2741
TITLE
Planet IGS-4215-16T2S Web Interface Cross-Site Request Forgery Vulnerability
Trust: 0.6
sources:
CNVD: CNVD-2025-11675
DESCRIPTION
Cross-Site Request Forgery (CSRF) vulnerability in Planet IGS-4215-16T2S, affecting firmware version 1.305b210528. This vulnerability could allow a remote attacker to trick some authenticated users into performing actions in their session, such as adding or updating accounts through the Switch web interface. Planet IGS-4215-16T2S is an industrial-grade switch device
Trust: 1.44
sources:
NVD: CVE-2024-2741 //
CNVD: CNVD-2025-11675
IOT TAXONOMY
| category: | ['Network device'] | sub_category: | - | Trust: 0.6 |
sources:
CNVD: CNVD-2025-11675
AFFECTED PRODUCTS
| vendor: | planet | model: | igs-4215-16t2s 1.305b210528 | scope: | - | version: | - | Trust: 0.6 |
sources:
CNVD: CNVD-2025-11675
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
|
sources:
CNVD: CNVD-2025-11675 //
NVD: CVE-2024-2741
PROBLEMTYPE DATA
| problemtype: | CWE-352 | Trust: 1.0 |
sources:
NVD: CVE-2024-2741
PATCH
| title: | Patch for Planet IGS-4215-16T2S Web Interface Cross-Site Request Forgery Vulnerability | url: | https://www.cnvd.org.cn/patchInfo/show/694786 | Trust: 0.6 |
sources:
CNVD: CNVD-2025-11675
EXTERNAL IDS
| db: | NVD | id: | CVE-2024-2741 | Trust: 1.6 |
| db: | CNVD | id: | CNVD-2025-11675 | Trust: 0.6 |
sources:
CNVD: CNVD-2025-11675 //
NVD: CVE-2024-2741
REFERENCES
| url: | https://www.incibe.es/en/incibe-cert/notices/aviso-sci/multiple-vulnerabilities-planet-igs-4215-16t2s | Trust: 1.6 |
sources:
CNVD: CNVD-2025-11675 //
NVD: CVE-2024-2741
SOURCES
| db: | CNVD | id: | CNVD-2025-11675 |
| db: | NVD | id: | CVE-2024-2741 |
LAST UPDATE DATE
2025-06-10T23:19:15.631000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2025-11675 | date: | 2025-06-06T00:00:00 |
| db: | NVD | id: | CVE-2024-2741 | date: | 2024-04-11T12:47:44.137 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2025-11675 | date: | 2025-06-06T00:00:00 |
| db: | NVD | id: | CVE-2024-2741 | date: | 2024-04-11T01:25:34.760 |