Security Advisory

CVE-2012-1258

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-01-09 19:47:43

Last updated 2024-08-06 18:53:36

Assigner mitre

State PUBLISHED

Description

cgi-bin/userprefs.cgi in Plixer International Scrutinizer NetFlow & sFlow Analyzer before 9.0.1.19899 does not validate user permissions, which allow remote attackers to add user accounts with administrator privileges via the newuser, pwd, and selectedUserGroup parameters.

← Browse all CVEs View on cve.org ↗