Security Advisory

CVE-2018-19525

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-03-17 18:43:37

Last updated 2024-08-05 11:37:11

Assigner mitre

State PUBLISHED

Description

An issue was discovered on Systrome ISG-600C, ISG-600H, and ISG-800W 1.1-R2.1_TRUNK-20180914.bin devices. There is CSRF via /ui/?g=obj_keywords_add and /ui/?g=obj_keywords_addsave with resultant XSS because of a lack of csrf token validation.

← Browse all CVEs View on cve.org ↗