CVE-2013-3935

Cross-site request forgery (CSRF) vulnerability in Opsview before 4.4.1 and Opsview Core before 20130522 allows remote attackers to hijack the authentication of administrators for requests that change the administrator password via unspecified vectors.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:opsview:opsview:*:*:*:*:*:*:*:*
cpe:2.3:a:opsview:opsview_core:*:*:*:*:*:*:*:*

History

21 Nov 2024, 01:54

Type Values Removed Values Added
References () http://docs.opsview.com/doku.php?id=opsview-core:changes#opsview_core_20130822 - Release Notes () http://docs.opsview.com/doku.php?id=opsview-core:changes#opsview_core_20130822 - Release Notes
References () http://docs.opsview.com/doku.php?id=opsview4.4:changes#fixes - Broken Link () http://docs.opsview.com/doku.php?id=opsview4.4:changes#fixes - Broken Link

Information

Published : 2020-01-02 15:15

Updated : 2024-11-21 01:54


NVD link : CVE-2013-3935

Mitre link : CVE-2013-3935

CVE.ORG link : CVE-2013-3935


JSON object : View

Products Affected

opsview

  • opsview
  • opsview_core
CWE
CWE-352

Cross-Site Request Forgery (CSRF)