CSRF in Cisco Application_networking_manager
CVE-2015-0651
Cross-site request forgery (CSRF) vulnerability in the web GUI in Cisco Application Networking Manager (ANM), and Device Manager (DM) on Cisco 4710 Application Control Engine (ACE) appliances, allows remote attackers to hijack the authenti…
Vulnerability class: CSRF (Cross-Site Request Forgery)
EPSS: 0.001 (32.5th percentile) — read the EPSS interpretation.
Affected products
- Cisco Application_networking_manager
- N/a — versions n/a
Weakness classification (CWE)
References
- 20150226 Cisco ACE 4710 Application Control Engine and Application Neworking Manager Cross-Site Request Forgery Vulnerability (x_refsource_CISCO, vendor-advisory, Vendor Advisory)
- 1031815 (vdb-entry, x_refsource_SECTRACK)
- 72796 (vdb-entry, x_refsource_BID)