Cross site request forgery (csrf)

2016-07-0301:59:00

PRIOn knowledge base

www.prio-n.com

7.6 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

39.4%

JSON

Cross-site request forgery (CSRF) vulnerability in VMware vRealize Log Insight 2.x and 3.x before 3.3.2 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.

CPENameOperatorVersion
vrealize_log_insighteq3.0.1
vrealize_log_insighteq3.3.1
vrealize_log_insighteq2.0.5
vrealize_log_insighteq3.0
vrealize_log_insighteq2.0
vrealize_log_insighteq2.5.1
vrealize_log_insighteq3.3
vrealize_log_insighteq2.5

Name	Operator	Version
vrealize_log_insight	eq	3.0.1
vrealize_log_insight	eq	3.3.1
vrealize_log_insight	eq	2.0.5
vrealize_log_insight	eq	3.0
vrealize_log_insight	eq	2.0
vrealize_log_insight	eq	2.5.1
vrealize_log_insight	eq	3.3
vrealize_log_insight	eq	2.5