exploitDog

GHSA-g43v-c4gp-q72h

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Cross-site request forgery (CSRF) vulnerability in VMware vCloud Director 5.1.x before 5.1.3 allows remote attackers to hijack the authentication of arbitrary users for requests that trigger a logout.

Cross-site request forgery (CSRF) vulnerability in VMware vCloud Director 5.1.x before 5.1.3 allows remote attackers to hijack the authentication of arbitrary users for requests that trigger a logout.

Ссылки

EPSS

Процентиль: 53%

0.00297

Низкий

CVE ID

Дефекты

CWE-352

Связанные уязвимости

CVE-2014-1211

nvd

около 12 лет назад

Cross-site request forgery (CSRF) vulnerability in VMware vCloud Director 5.1.x before 5.1.3 allows remote attackers to hijack the authentication of arbitrary users for requests that trigger a logout.

EPSS

Процентиль: 53%

0.00297

Низкий

CVE ID

Дефекты

CWE-352