Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-2152

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2014-2152
Last Modified 20 Feb 2015 09:59:30
Published 11 Feb 2015 08:59:16
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2014-2152

Summary

Cross-site request forgery (CSRF) vulnerability in the INSERT page in Cisco Prime Infrastructure (PI) allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCun21868.

Vulnerable Systems

Application

  • Cisco Prime Infrastructure -


References

CISCO - 20150209 Cisco Prime Infrastructure Cross-Site Request Forgery Vulnerability

XF - cisco-prime-cve20142152-csrf(100747)

SECTRACK - 1031715

BID - 72558


Last Updated: 27 May 2016 11:07:53