Security Advisory

CVE-2024-28141

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-12-11 15:54:38

Last updated 2025-11-03 21:54:25

Assigner SEC-VLab

State PUBLISHED

Description

The web application is not protected against cross-site request forgery attacks. Therefore, an attacker can trick users into performing actions on the application when they visit an attacker-controlled website or click on a malicious link. E.g. an attacker can forge malicious links to reset the admin password or create new users.

← Browse all CVEs View on cve.org ↗