CVE-2021-37198

A vulnerability has been identified in COMOS (All versions < V10.4.1). The COMOS Web component of COMOS uses a flawed implementation of CSRF prevention. An attacker could exploit this vulnerability to perform Cross-Site-Request-Forgery attacks. Date published : 2022-01-11 https://cert-portal.siemens.com/productcert/pdf/ssa-995338.pdf