Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2007-3489
HistoryJun 29, 2007 - 6:00 p.m.

CVE-2007-3489

2007-06-2918:00:00
mitre
www.cve.org
2

AI Score

6.8

Confidence

Low

EPSS

0.011

Percentile

84.7%

JSON

Cross-site request forgery (CSRF) vulnerability in pop/WizU.html in the management interface in Check Point VPN-1 Edge X Embedded NGX 7.0.33x on the Check Point VPN-1 UTM Edge allows remote attackers to perform privileged actions as administrators, as demonstrated by a request with the swuuser and swupass parameters, which adds an administrator account. NOTE: the CSRF attack has no timing window because there is no logout capability in the management interface.

Related

nvd 1
checkpoint_security 1
prion 1
cve 1
nvd
nvd
CVE-2007-3489
2007-06-29 18:30:00
checkpoint_security
checkpoint_security
VPN-1 UTM Edge cross-site request forgery vulnerability (CVE-2007-3489)
2007-06-12 21:00:00
prion
prion
Cross site request forgery (csrf)
2007-06-29 18:30:00
cve
cve
CVE-2007-3489
2007-06-29 18:30:00

AI Score

6.8

Confidence

Low

EPSS

0.011

Percentile

84.7%

JSON
Related for CVELIST:CVE-2007-3489
nvd1checkpoint_security1prion1cve1