NVD

Id
34626  
Name
CVE-2014-7190  
Description
Multiple cross-site request forgery (CSRF) vulnerabilities in Openfiler 2.99.1 allow remote attackers to hijack the authentication of administrators for requests that (1) shutdown or (2) reboot the server via a request to admin/system_shutdown.html.  
Reject
 
CVSS Version
2  
CVSS Score
6.8  
Severity
Medium  
CVSS Base Score
6.8  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:P/I:P/A:P)  
Pub Date
2017-01-19  
Published
2014-09-30  
Modified Date
2014-10-01  
Seq
2014-7190  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
178532 34626 CVE-2014-7190 http://packetstormsecurity.com/files/128455/Openfiler-2.99.1-Denial-Of-Service.html  View
178533 34626 CVE-2014-7190 20140927 Openfiler DoS via CSRF (CVE-2014-7190)  View
178534 34626 CVE-2014-7190 70163  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
15613 JVNDB-2014-004488 Openfiler におけるクロスサイトリクエストフォージェリの脆弱性 Openfiler には、クロスサイトリクエストフォージェリの脆弱性が存在します。 CVE-2014-7190 74482 CVE-2014-7190 34626 6.8 http://jvndb.jvn.jp/ja/contents/2014/JVNDB-2014-004488.html 2014-09-26 2014-10-02 View