Multiple cross-site request forgery (CSRF) vulnerabilities in Agile FleetCommander and FleetCommander Kiosk before 4.08 allow remote attackers to hijack the authentication of arbitrary users for requests that modify (1) passwords, (2) accounts, or (3) permissions.
References
Link | Resource |
---|---|
http://www.kb.cert.org/vuls/id/427547 | US Government Resource |
http://www.securityfocus.com/bid/56427 | |
https://exchange.xforce.ibmcloud.com/vulnerabilities/79854 |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: certcc
Published: 2012-11-18T21:00:00
Updated: 2017-08-28T12:57:01
Reserved: 2012-09-17T00:00:00
Link: CVE-2012-4943
JSON object: View
NVD Information
Status : Modified
Published: 2012-11-18T21:55:01.010
Modified: 2017-08-29T01:32:26.040
Link: CVE-2012-4943
JSON object: View
Redhat Information
No data.
CWE