05 Mar 2021
Vulnérabilité CVE-2021-26961 CVE Vulnerability
A remote unauthenticated cross-site request forgery (csrf) vulnerability was discovered in Aruba AirWave Management Platform version(s): Prior to 8.2.12.0. A vulnerability in the AirWave web-based management interface could allow an unauthenticated remote attacker to conduct a CSRF attack against a vulnerable system. A successful exploit would consist of an attacker persuading an authorized user to follow a malicious link, resulting in arbitrary actions being carried out with the privilege level of the targeted user. (CVSS:6.8) (Last Update:2021-03-11)
Vulnerability Details : A remote unauthenticated cross-site request forgery (csrf) vulnerability was discovered in Aruba AirWave Management Platform version(s): Prior to 8.2.12.0. A vulnerability in the AirWave web-based management interface could allow an unauthenticated remote attacker to conduct a CSRF attack against a vulnerable system. A successful exploit would consist of an attacker persuading an authorized user to follow a malicious link, resulting in arbitrary actions being carried out with the privilege level of the targeted user. Publish Date : 2021-03-05 Last Update Date : 2021-03-11 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2021-26961
- Number Of Affected Versions By Product
- References For CVE-2021-26961
| |||||||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2021-26961There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |