Redhat : Security Vulnerabilities, CVEs, Published In 2014 (CSRF)
CloudForms 3.0 Management Engine before 5.2.1.6 allows remote attackers to bypass the Ruby on Rails protect_from_forgery mechanism and conduct cross-site request forgery (CSRF) attacks via a destructive action in a request.
Max CVSS
6.8
EPSS Score
0.09%
Published
2014-01-23
Updated
2014-01-23
1 vulnerabilities found