Lucene search
HistoryJun 09, 2012 - 12:55 a.m.
CVE-2012-2564
cve-2012-2564
cross-site request forgery
csrf vulnerabilities
bloxx web filtering
nvd
authentication hijacking
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.3 High
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
51.7%
Multiple cross-site request forgery (CSRF) vulnerabilities in the administrative interface in Bloxx Web Filtering before 5.0.14 allow remote attackers to hijack the authentication of administrators for requests that perform administrative actions.
Affected configurations
Node
bloxxweb_filteringRange≤5.0.13
| CPE | Name | Operator | Version |
|---|---|---|---|
| bloxx:web_filtering | bloxx web filtering | le | 5.0.13 |
Related
prion
prion
Cross site request forgery (csrf)
2012-06-09 00:55:00
Cross site request forgery (csrf)
2012-06-09 00:55:00
nvd
nvd
CVE-2012-2564
2012-06-09 00:55:01
CVE-2012-3343
2012-06-09 00:55:01
cvelist
cvelist
CVE-2012-2564
2012-06-09 00:00:00
CVE-2012-3343
2022-10-03 16:15:24
cve
cve
CVE-2012-3343
2022-10-03 16:15:24
cert
cert
Bloxx Web Filtering multiple vulnerabilities
2012-05-29 00:00:00
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.3 High
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
51.7%
Related for CVE-2012-2564