Описание
An issue was discovered in Aviatrix Controller before 5.4.1204. An API call on the web interface lacked a session token check to control access, leading to CSRF.
An issue was discovered in Aviatrix Controller before 5.4.1204. An API call on the web interface lacked a session token check to control access, leading to CSRF.
EPSS
Процентиль: 33%
0.0013
Низкий
CVE ID
Связанные уязвимости
CVSS3: 8.8
nvd
больше 5 лет назад
An issue was discovered in Aviatrix Controller before 5.4.1204. An API call on the web interface lacked a session token check to control access, leading to CSRF.
EPSS
Процентиль: 33%
0.0013
Низкий