CVE-2015-3655
N/A
N/A
Summary
Cross-site request forgery (CSRF) vulnerability in Aruba Networks ClearPass Policy Manager before 6.4.7 and 6.5.x before 6.5.2 allows remote attackers to hijack the authentication of administrators by leveraging improper enforcement of the anti-CSRF token.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2015-009.txt
- http://www.securityfocus.com/bid/100594
References
- http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2015-009.txt
- http://www.securityfocus.com/bid/100594
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.