Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2014-3590

Опубликовано: 02 янв. 2020
Источник: nvd
CVSS3: 6.5
CVSS2: 4.3
EPSS Низкий

Описание

Versions of Foreman as shipped with Red Hat Satellite 6 does not check for a correct CSRF token in the logout action. Therefore, an attacker can log out a user by having them view specially crafted content.

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:redhat:satellite:6.0:*:*:*:*:*:*:*

EPSS

Процентиль: 32%
0.0012
Низкий

6.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-352

Связанные уязвимости

redhat
почти 11 лет назад

Versions of Foreman as shipped with Red Hat Satellite 6 does not check for a correct CSRF token in the logout action. Therefore, an attacker can log out a user by having them view specially crafted content.

CVSS3: 6.5
debian
больше 5 лет назад

Versions of Foreman as shipped with Red Hat Satellite 6 does not check ...

github
около 3 лет назад

Versions of Foreman as shipped with Red Hat Satellite 6 does not check for a correct CSRF token in the logout action. Therefore, an attacker can log out a user by having them view specially crafted content.

EPSS

Процентиль: 32%
0.0012
Низкий

6.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-352