Cross-site request forgery (CSRF) vulnerability in the administration interface in Cisco IronPort Encryption Appliance 6.2.4 prior to 6.2.4.1.1, 6.2.5, 6.2.6, 6.2.7 prior to 6.2.7.7, 6.3 prior to 6.3.0.4, and 6.5 prior to 6.5.0.2; and Cisco IronPort PostX 6.2.1 prior to 6.2.1.1 and 6.2.2 prior to 6.2.2.3; allows remote malicious users to execute commands and modify appliance preferences as arbitrary users via a logout action.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cisco ironport encryption appliance 6.2.7.2 |
||
cisco ironport encryption appliance 6.2.7.3 |
||
cisco ironport encryption appliance 6.3.0.3 |
||
cisco ironport encryption appliance 6.5 |
||
cisco ironport encryption appliance 6.2.7 |
||
cisco ironport encryption appliance 6.2.7.1 |
||
cisco ironport encryption appliance 6.3.0.1 |
||
cisco ironport encryption appliance 6.3.0.2 |
||
cisco ironport postx 6.2.2.2 |
||
cisco ironport encryption appliance 6.2.4 |
||
cisco ironport encryption appliance 6.2.4.1 |
||
cisco ironport encryption appliance 6.2.7.6 |
||
cisco ironport encryption appliance 6.3 |
||
cisco ironport postx 6.2.2 |
||
cisco ironport postx 6.2.2.1 |
||
cisco ironport encryption appliance 6.2.5 |
||
cisco ironport encryption appliance 6.2.6 |
||
cisco ironport encryption appliance 6.2.7.4 |
||
cisco ironport encryption appliance 6.2.7.5 |
||
cisco ironport encryption appliance 6.5.0.1 |
||
cisco ironport postx 6.2.1 |