CVE-2011-0545 in LiveUpdate Administrator정보

요약

\~에 의해 MITRE

Cross-site request forgery (CSRF) vulnerability in adduser.do in Symantec LiveUpdate Administrator (LUA) before 2.3 allows remote attackers to hijack the authentication of administrators for requests that create new administrative accounts, and possibly have unspecified other impact, via the userRole parameter.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

예약하다

2011. 01. 20.

공개

2011. 03. 28.

모더레이션

수락

항목

VDB-56952

CPE

준비됨

CWE

CWE-352 (확인됨)

익스플로잇

다운로드

CVSS

6.8 (NVD)

EPSS

0.02937

KEV

아니요

활동

매우 낮음

출처

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-0545
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-0545
CVE Details	https://www.cvedetails.com/cve/CVE-2011-0545/

◂ 이전 개요 다음 ▸

Might our Artificial Intelligence support you?

Check our Alexa App!