Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2015-0651

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2015-0651
Last Modified 09 Mar 2015 10:00:07
Published 26 Feb 2015 09:59:34
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2015-0651

Summary

Cross-site request forgery (CSRF) vulnerability in the web GUI in Cisco Application Networking Manager (ANM), and Device Manager (DM) on Cisco 4710 Application Control Engine (ACE) appliances, allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCuo99753.

Vulnerable Systems

Application

  • Cisco Application Networking Manager -


References

CISCO - 20150226 Cisco ACE 4710 Application Control Engine and Application Neworking Manager Cross-Site Request Forgery Vulnerability

SECTRACK - 1031815

BID - 72796


Last Updated: 27 May 2016 11:07:57