Security Advisory

CVE-2015-5686

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-02-27 00:25:58

Last updated 2024-08-06 06:59:03

Assigner mitre

State PUBLISHED

Description

Parts of the Puppet Enterprise Console 3.x were found to be susceptible to clickjacking and CSRF (Cross-Site Request Forgery) attacks. This would allow an attacker to redirect user input to an untrusted site or hijack a user session.

← Browse all CVEs View on cve.org ↗