Security Advisory

CVE-2021-37201

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-09-14 10:47:54

Last updated 2024-08-04 01:16:02

Assigner siemens

State PUBLISHED

Description

A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP1). The web interface of affected devices is vulnerable to a Cross-Site Request Forgery (CSRF) attack. This could allow an attacker to manipulate the SINEC NMS configuration by tricking an unsuspecting user with administrative privileges to click on a malicious link.

← Browse all CVEs View on cve.org ↗