Lucene search
HistoryJan 17, 2014 - 9:55 p.m.
CVE-2014-1211
cve
2014
1211
cross-site request forgery
csrf
vulnerability
vmware
vcloud director
authentication
7.2 High
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.002 Low
EPSS
Percentile
55.8%
Cross-site request forgery (CSRF) vulnerability in VMware vCloud Director 5.1.x before 5.1.3 allows remote attackers to hijack the authentication of arbitrary users for requests that trigger a logout.
Affected configurations
Node
vmwarevcloud_directorMatch5.1.0
ORvmwarevcloud_directorMatch5.1.1
ORvmwarevcloud_directorMatch5.1.2
Related
ibm
ibm
nessus
nessus
prion
prion
Cross site request forgery (csrf)
2014-01-17 21:55:00
cvelist
cvelist
CVE-2014-1211
2014-01-17 19:00:00
nvd
nvd
CVE-2014-1211
2014-01-17 21:55:19
openvas
openvas
vmware
vmware
7.2 High
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.002 Low
EPSS
Percentile
55.8%
Related for CVE-2014-1211