CVE-2026-1835

MEDIUM 4.3

lcg0124 BootDo cross-site request forgery

CVSS Score

4.3

EPSS Score

0.0%

EPSS Percentile

0th

A vulnerability was identified in lcg0124 BootDo up to e93dd428ef6f5c881aa74d49a2099ab0cf1e0fcb. This affects an unknown part. The manipulation leads to cross-site request forgery. The attack is possible to be carried out remotely. The exploit is publicly available and might be used. This product adopts a rolling release strategy to maintain continuous delivery. Therefore, version details for affected or updated releases cannot be specified.

CWE	CWE-352 CWE-862
Vendor	lcg0124
Product	bootdo
Published	Feb 4, 2026
Last Updated	Feb 23, 2026

Stay Ahead of the Next One

Get instant alerts for lcg0124 bootdo

Be the first to know when new medium vulnerabilities affecting lcg0124 bootdo are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N/E:P/RL:X/RC:R

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

Affected Versions

lcg0124 / BootDo

e93dd428ef6f5c881aa74d49a2099ab0cf1e0fcb

References

NVD ↗ CVE.org ↗ EPSS Data ↗

vuldb.com: https://vuldb.com/?id.344028 vuldb.com: https://vuldb.com/?ctiid.344028 vuldb.com: https://vuldb.com/?submit.742484 github.com: https://github.com/webzzaa/CVE-/issues/6

Credits

🔍 Tom132432 (VulDB User)