The vulnerability of the login_password component in the FreeIpa server allows a attacker to perform a CSRF attack.
The vulnerability of the loginpassword component in the FreeIpa server relates to the sending of user requests that can perform actions on behalf of the user. Exploiting this vulnerability could allow a malicious actor to carry out a CSRF attack remotely...