Описание
Cross-site request forgery (CSRF) vulnerability in the management interface in FreeIPA before 2.1.4 allows remote attackers to hijack the authentication of administrators for requests that make configuration changes.
Дополнительная информация
Статус:
Moderate
Дефект:
CWE-352
https://bugzilla.redhat.com/show_bug.cgi?id=747710FreeIPA: CSRF vulnerability
4.3 Medium
CVSS2
Связанные уязвимости
nvd
около 14 лет назад
Cross-site request forgery (CSRF) vulnerability in the management interface in FreeIPA before 2.1.4 allows remote attackers to hijack the authentication of administrators for requests that make configuration changes.
github
больше 3 лет назад
Cross-site request forgery (CSRF) vulnerability in the management interface in FreeIPA before 2.1.4 allows remote attackers to hijack the authentication of administrators for requests that make configuration changes.
oracle-oval
около 14 лет назад
ELSA-2011-1533: ipa security and bug fix update (MODERATE)
4.3 Medium
CVSS2