Описание
Cross-site request forgery (CSRF) vulnerability in the rootpw plugin in rPath Appliance Platform Agent 2 and 3 allows remote attackers to reset the root password as the administrator via a crafted URL.
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:rpath:appliance_platform_agent:2:*:*:*:*:*:*:*
cpe:2.3:a:rpath:appliance_platform_agent:3:*:*:*:*:*:*:*
EPSS
Процентиль: 30%
0.00114
Низкий
2.6 Low
CVSS2
Дефекты
CWE-352
Связанные уязвимости
github
почти 4 года назад
Cross-site request forgery (CSRF) vulnerability in the rootpw plugin in rPath Appliance Platform Agent 2 and 3 allows remote attackers to reset the root password as the administrator via a crafted URL.
EPSS
Процентиль: 30%
0.00114
Низкий
2.6 Low
CVSS2
Дефекты
CWE-352