CVE-2013-4963 in Puppetinformazioni

Riassunto

di MITRE

Multiple cross-site request forgery (CSRF) vulnerabilities in Puppet Enterprise (PE) before 3.0.1 allow remote attackers to hijack the authentication of users for requests that deleting a (1) report, (2) group, or (3) class or possibly have other unspecified impact.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Prenotare

29/07/2013

Divulgazione

14/03/2014

Moderazione

accettato

CPE

pronto

EPSS

0.00835

KEV

no

Attività

molto basso

Fonti

Interested in the pricing of exploits?

See the underground prices here!