CVE-2014-1615
CVE-2014-1615 describes multiple CSRF vulnerabilities in Carbon Black prior to 4.1.0 that allow remote attackers to hijack administrator sessions for requests such as adding new administrative users via the API (api/user) and perform other unspecified actions. Affected product: Carbon Black; vuln...