Lucene search
Japan Vulnerability NotesJVN:48108258HistoryJun 03, 2013 - 12:00 a.m.
JVN#48108258: HP ProCurve 1700 series switches vulnerable to cross-site request forgery
2013-06-0300:00:00
Japan Vulnerability Notes
jvn.jp
18
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
44.4%
ProCurve 1700 series switches provided by Hewlett-Packard contain a cross-site request forgery vulnerability.
Impact
If a user views a malicious page while logged in, product settings may be changed.
Solution
Update the software
Update to the latest version according to the information provided by the developer.
Products Affected
- HP ProCurve 1700-8 Switch (J9079A) VA.02.08 and earlier
- HP ProCurve 1700-24 Switch (J9080A) VB.02.08 and earlier
Related
nvd
nvd
CVE-2012-5216
2013-03-28 23:55:01
cve
cve
CVE-2012-5216
2022-10-03 16:15:29
prion
prion
Cross site request forgery (csrf)
2013-03-28 23:55:00
securityvulns
securityvulns
cvelist
cvelist
CVE-2012-5216
2022-10-03 16:15:29
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
44.4%
Related for JVN:48108258