Количество 2
Количество 2
CVE-2015-5170
Cloud Foundry Runtime cf-release before 216, UAA before 2.5.2, and Pivotal Cloud Foundry (PCF) Elastic Runtime before 1.7.0 allow remote attackers to conduct cross-site request forgery (CSRF) attacks on PWS and log a user into an arbitrary account by leveraging lack of CSRF checks.
GHSA-mpv3-g527-fqrj
Cloud Foundry Runtime Cross-Site Request Forgery vulnerability
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2015-5170 Cloud Foundry Runtime cf-release before 216, UAA before 2.5.2, and Pivotal Cloud Foundry (PCF) Elastic Runtime before 1.7.0 allow remote attackers to conduct cross-site request forgery (CSRF) attacks on PWS and log a user into an arbitrary account by leveraging lack of CSRF checks. | CVSS3: 8.8 | 0% Низкий | больше 8 лет назад |
| GHSA-mpv3-g527-fqrj Cloud Foundry Runtime Cross-Site Request Forgery vulnerability | CVSS3: 8.8 | 0% Низкий | больше 3 лет назад |
Уязвимостей на страницу