Lucene search
MitreCVE-2010-2268HistoryJun 15, 2010 - 2:30 p.m.
CVE-2010-2268
2010-06-1514:30:01
CWE-352
mitre
web.nvd.nist.gov
24
cve-2010-2268
cross-site request forgery
csrf vulnerability
authcfg.cgi
accoria web server
rock web server
authentication hijacking
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7.3
Confidence
Low
EPSS
0.001
Percentile
49.5%
Cross-site request forgery (CSRF) vulnerability in authcfg.cgi in Accoria Web Server (aka Rock Web Server) 1.4.7 allows remote attackers to hijack the authentication of administrators for requests that create user accounts.
Affected configurations
Node
accoriarock_web_serverMatch1.4.7
| Vendor | Product | Version | CPE |
|---|---|---|---|
| accoria | rock_web_server | 1.4.7 | cpe:2.3:a:accoria:rock_web_server:1.4.7:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2010-2268
2010-06-15 14:30:01
cvelist
cvelist
CVE-2010-2268
2010-06-14 19:00:00
prion
prion
Cross site request forgery (csrf)
2010-06-15 14:30:00
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7.3
Confidence
Low
EPSS
0.001
Percentile
49.5%
Related for CVE-2010-2268