Security Advisory

CVE-2018-9856

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-04-09 07:00:00

Last updated 2024-09-16 20:22:43

Assigner mitre

State PUBLISHED

Description

Kotti before 1.3.2 and 2.x before 2.0.0b2 has CSRF in the local roles implementation, as demonstrated by triggering a permission change via a /admin-document/@@share request.

← Browse all CVEs View on cve.org ↗