Skip to main content

Fl Switch 2005 CVE-2026-22323

| EUVDEUVD-2026-12794 HIGH
Cross-Site Request Forgery (CSRF) (CWE-352)
2026-03-18 CERTVDE
CSRF Fl Switch 2005 Fl Switch 2008 Fl Switch 2016 Fl Switch 2105 Fl Switch 2108 Fl Switch 2116 Fl Switch 2204 2tc 2sfx Fl Switch 2205 Fl Switch 2206 2fx Fl Switch 2206 2fx Sm Fl Switch 2206 2fx Sm St Fl Switch 2206 2fx St Fl Switch 2206 2sfx Fl Switch 2206 2sfx Pn Fl Switch 2206c 2fx Fl Switch 2207 Fx Fl Switch 2207 Fx Sm Fl Switch 2208 Fl Switch 2208 Pn Fl Switch 2208c Fl Switch 2212 2tc 2sfx Fl Switch 2214 2fx Fl Switch 2214 2fx Sm Fl Switch 2214 2sfx Fl Switch 2214 2sfx Pn Fl Switch 2216 Fl Switch 2216 Pn Fl Switch 2304 2gc 2sfp Fl Switch 2306 2sfp Fl Switch 2306 2sfp Pn Fl Switch 2308 Fl Switch 2308 Pn Fl Switch 2312 2gc 2sfp Fl Switch 2314 2sfp Fl Switch 2314 2sfp Pn Fl Switch 2316 Fl Switch 2316 Pn Fl Switch 2404 2tc 2sfx Fl Switch 2406 2sfx Fl Switch 2406 2sfx Pn Fl Switch 2408 Fl Switch 2408 Pn Fl Switch 2412 2tc 2sfx Fl Switch 2414 2sfx Fl Switch 2414 2sfx Pn Fl Switch 2416 Fl Switch 2416 Pn Fl Switch 2504 2gc 2sfp Fl Switch 2506 2sfp Fl Switch 2506 2sfp Pn Fl Switch 2508 Fl Switch 2508 Pn Fl Switch 2512 2gc 2sfp Fl Switch 2514 2sfp Fl Switch 2514 2sfp Pn Fl Switch 2516 Fl Switch 2516 Pn Fl Switch 2608 Fl Switch 2608 Pn Fl Switch 2708 Fl Switch 2708 Pn Fl Switch 2303 8sp1 Fl Nat 2008 Fl Nat 2208 Fl Nat 2304 2gc 2sfp Fl Switch 2008f Fl Switch 2316 K1 Fl Switch 2506 2Sfp K1 Fl Switch 2508 K1 Fl Switch Tsn 2316 Fl Switch Tsn 2312 2gc 2sfp Fl Switch Tsn 2314 2sfp Fl Switch 5924 4gc Fl Switch 5916 8Gc 4Sfp Fl Switch 5924sfp 4gc Fl Switch 5924 4Sfp Fl Switch 5916Sfp 8Gc 4Sfp
7.1
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
7.1 HIGH
AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:L

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:L
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Unchanged
Confidentiality
None
Integrity
High
Availability
Low

Lifecycle Timeline

7
Re-analysis Queued
Apr 27, 2026 - 19:37 vuln.today
cvss_changed
Analysis Updated
Apr 16, 2026 - 06:20 EUVD-patch-fix
executive_summary
Re-analysis Queued
Apr 16, 2026 - 05:29 backfill_euvd_patch
patch_released
Patch available
Apr 16, 2026 - 05:29 EUVD
3.53
EUVD ID Assigned
Mar 18, 2026 - 08:00 euvd
EUVD-2026-12794
Analysis Generated
Mar 18, 2026 - 08:00 vuln.today
CVE Published
Mar 18, 2026 - 07:35 nvd
HIGH 7.1

DescriptionCVE.org

A CSRF vulnerability in the Link Aggregation configuration interface allows an unauthenticated remote attacker to trick authenticated users into sending unauthorized POST requests to the device by luring them to a malicious webpage. This can silently alter the device’s configuration without the victim’s knowledge or consent. Availability impact was set to low because after a successful attack the device will automatically recover without external intervention.

AnalysisAI

A CSRF vulnerability in A CSRF vulnerability in the Link Aggregation configuration interface (CVSS 7.1) that allows an unauthenticated remote attacker. High severity vulnerability requiring prompt remediation.

Technical ContextAI

CWE-352 (Cross-Site Request Forgery). CVSS 7.1 indicates high severity. Affects A CSRF vulnerability in the Link Aggregation configuration interface.

RemediationAI

Monitor vendor channels for patch availability.

Share

CVE-2026-22323 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy