CVE-2007-3462

2007-06-2718:00:00

mitre

www.cve.org

7.6 High

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

78.1%

JSON

Cross-site request forgery (CSRF) vulnerability in Check Point SofaWare Safe@Office, with firmware before Embedded NGX 7.0.45 GA, allows remote attackers to execute commands as arbitrary users, and disable firewalling of the protected network.

References

labs.calyptix.com/CX-2007-04.php

labs.calyptix.com/CX-2007-04.txt

osvdb.org/37644

secunia.com/advisories/25822

www.securityfocus.com/archive/1/472290/100/0/threaded

www.securitytracker.com/id?1018317

www.sofaware.com/supportDownloads.aspx?boneId=182

www.vupen.com/english/advisories/2007/2364

exchange.xforce.ibmcloud.com/vulnerabilities/35093

exchange.xforce.ibmcloud.com/vulnerabilities/35094