Cisco : Security Vulnerabilities, CVEs, Published In 2014 (CSRF)
Cross-site request forgery (CSRF) vulnerability in the web framework in Cisco Integrated Management Controller in Cisco Unified Computing System allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCuq45477.
Max CVSS
6.8
EPSS Score
0.20%
Published
2014-11-18
Updated
2017-09-08
Cross-site request forgery (CSRF) vulnerability in the web framework in Cisco WebEx Meetings Server 1.5(.1.131) and earlier allows remote attackers to hijack the authentication of unspecified victims via unknown vectors, aka Bug ID CSCuj81735.
Max CVSS
6.8
EPSS Score
0.24%
Published
2014-07-26
Updated
2017-08-29
Cross-site request forgery (CSRF) vulnerability in the web framework in Cisco Security Manager 4.6 and earlier allows remote attackers to hijack the authentication of arbitrary users for requests that make unspecified changes, aka Bug ID CSCuo46427.
Max CVSS
6.8
EPSS Score
0.12%
Published
2014-05-26
Updated
2016-09-07
Cross-site request forgery (CSRF) vulnerability in the web framework in Cisco Broadcast Access Center for Telco and Wireless (aka BAC-TW) allows remote attackers to hijack the authentication of arbitrary users for requests that make BAC-TW changes, aka Bug IDs CSCuo23804 and CSCuo26389.
Max CVSS
6.8
EPSS Score
0.09%
Published
2014-05-07
Updated
2015-08-13
Cross-site request forgery (CSRF) vulnerability in the web framework in Cisco WebEx Meetings Server allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCuj81777.
Max CVSS
6.8
EPSS Score
0.09%
Published
2014-04-30
Updated
2015-09-16
Cross-site request forgery (CSRF) vulnerability in the administrative web interface in the Cisco RV router firmware on RV220W devices, before 1.0.5.9 on RV120W devices, and before 1.0.4.14 on RV180 and RV180W devices allows remote attackers to hijack the authentication of administrators, aka Bug ID CSCuh87145.
Max CVSS
6.8
EPSS Score
0.29%
Published
2014-11-07
Updated
2018-10-09
Multiple cross-site request forgery (CSRF) vulnerabilities in CERUserServlet pages in Cisco Emergency Responder (ER) 8.6 and earlier allow remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCun24250.
Max CVSS
6.8
EPSS Score
0.16%
Published
2014-04-04
Updated
2015-09-16
Cross-site request forgery (CSRF) vulnerability in the Unified Serviceability subsystem in Cisco Unified Contact Center Express (Unified CCX) allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCum95502.
Max CVSS
6.8
EPSS Score
0.09%
Published
2014-02-27
Updated
2015-08-01
Cross-site request forgery (CSRF) vulnerability in the Call Detail Records Analysis and Reporting (CAR) interface in the OS Administration component in Cisco Unified Communications Manager (Unified CM) 10.0(1) and earlier allows remote attackers to hijack the authentication of administrators for requests that make administrative changes, aka Bug ID CSCun00701.
Max CVSS
6.8
EPSS Score
0.16%
Published
2014-02-27
Updated
2015-08-01
Cross-site request forgery (CSRF) vulnerability in the Call Detail Records Analysis and Reporting (CAR) page in Cisco Unified Communications Manager (Unified CM) 10.0(1) and earlier allows remote attackers to hijack the authentication of arbitrary users for requests that make CAR modifications, aka Bug ID CSCum46468.
Max CVSS
6.8
EPSS Score
0.16%
Published
2014-02-20
Updated
2015-08-13
Cross-site request forgery (CSRF) vulnerability in apply.cgi in Linksys WRT310Nv2 2.0.0.1 allows remote attackers to hijack the authentication of administrators for requests that change passwords and modify remote management ports.
Max CVSS
6.8
EPSS Score
0.16%
Published
2014-09-29
Updated
2014-10-01
11 vulnerabilities found