Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2005-3618
HistoryDec 31, 2005 - 5:00 a.m.

CVE-2005-3618

2005-12-3105:00:00
NVD-CWE-Other
[email protected]
web.nvd.nist.gov
18
cve-2005-3618
csrf
vmware esx server
security vulnerability
patch
remote attack

7 High

AI Score

Confidence

Low

7.6 High

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

0.033 Low

EPSS

Percentile

91.2%

JSON

Cross-site request forgery (CSRF) vulnerability in the management interface for VMware ESX Server 2.0.x before 2.0.2 patch 1, 2.1.x before 2.1.3 patch 1, and 2.x before 2.5.3 patch 2 allows allows remote attackers to perform unauthorized actions as the administrator via URLs, as demonstrated using the setUsr operation to change a password. NOTE: this issue can be leveraged with CVE-2005-3619 to automatically perform the attacks.

Related

securityvulns 3
cve 2
prion 1
securityvulns
securityvulns
Corsaire Security Advisory - VMware ESX Server Password Cross Site Request Forgery issue
2006-08-02 00:00:00
VMSA-2006-0004 Cross site scripting vulnerability and other fixes
2006-08-02 00:00:00
Corsaire Security Advisory - VMware ESX Server Cross Site Scripting issue
2006-06-02 00:00:00
cve
cve
CVE-2005-3619
2005-12-31 05:00:00
CVE-2006-2481
2006-07-31 19:04:00
prion
prion
Cross site scripting
2006-07-31 19:04:00

7 High

AI Score

Confidence

Low

7.6 High

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

0.033 Low

EPSS

Percentile

91.2%

JSON
Related for CVE-2005-3618
securityvulns3cve2prion1