Cross-site request forgery (CSRF) vulnerability in the web framework in Cisco Integrated Management Controller in Cisco Unified Computing System allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCuq45477.
References
Configurations
History
21 Nov 2024, 02:18
Type | Values Removed | Values Added |
---|---|---|
References | () http://secunia.com/advisories/62565 - | |
References | () http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-7996 - Vendor Advisory | |
References | () http://tools.cisco.com/security/center/viewAlert.x?alertId=36456 - Vendor Advisory | |
References | () http://www.securityfocus.com/bid/71171 - | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/98769 - |
Information
Published : 2014-11-18 23:59
Updated : 2024-11-21 02:18
NVD link : CVE-2014-7996
Mitre link : CVE-2014-7996
CVE.ORG link : CVE-2014-7996
JSON object : View
Products Affected
cisco
- unified_computing_system
CWE
CWE-352
Cross-Site Request Forgery (CSRF)