Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2014-2330

Опубликовано: 31 авг. 2015
Источник: nvd
CVSS2: 6.8
EPSS Низкий

Описание

Multiple cross-site request forgery (CSRF) vulnerabilities in the Multisite GUI in Check_MK before 1.2.5i2 allow remote attackers to hijack the authentication of users for requests that (1) upload arbitrary snapshots, (2) delete arbitrary files, or possibly have other unspecified impact via unknown vectors.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:check_mk_project:check_mk:*:*:*:*:*:*:*:*
Версия до 1.2.2 (включая)
cpe:2.3:a:check_mk_project:check_mk:*:*:*:*:*:*:*:*
Версия до 1.2.3 (включая)

EPSS

Процентиль: 38%
0.00168
Низкий

6.8 Medium

CVSS2

Дефекты

CWE-352

Связанные уязвимости

ubuntu логотип

CVE-2014-2330

ubuntu
больше 10 лет назад

Multiple cross-site request forgery (CSRF) vulnerabilities in the Multisite GUI in Check_MK before 1.2.5i2 allow remote attackers to hijack the authentication of users for requests that (1) upload arbitrary snapshots, (2) delete arbitrary files, or possibly have other unspecified impact via unknown vectors.

debian логотип

CVE-2014-2330

debian
больше 10 лет назад

Multiple cross-site request forgery (CSRF) vulnerabilities in the Mult ...

github логотип

GHSA-f97q-qfwc-4xgr

github
больше 3 лет назад

Multiple cross-site request forgery (CSRF) vulnerabilities in the Multisite GUI in Check_MK before 1.2.5i2 allow remote attackers to hijack the authentication of users for requests that (1) upload arbitrary snapshots, (2) delete arbitrary files, or possibly have other unspecified impact via unknown vectors.

EPSS

Процентиль: 38%
0.00168
Низкий

6.8 Medium

CVSS2

Дефекты

CWE-352