Lucene search

K
cvelistRedhatCVELIST:CVE-2017-7556
HistoryAug 17, 2017 - 7:00 p.m.

CVE-2017-7556

2017-08-1719:00:00
CWE-352
redhat
www.cve.org
1

8.7 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

53.1%

Hawtio versions up to and including 1.5.3 are vulnerable to CSRF vulnerability allowing remote attackers to trick the user to visit their website containing a malicious script which can be submitted to hawtio server on behalf of the user.

CNA Affected

[
  {
    "product": "hawtio",
    "vendor": "Red Hat, Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "up to and including 1.5.3"
      }
    ]
  }
]

8.7 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

53.1%

Related for CVELIST:CVE-2017-7556