CVE-2018-0107

A vulnerability in the web framework of Cisco Prime Service Catalog could allow an unauthenticated, remote attacker to execute unwanted actions on an affected device. The vulnerability is due to a lack of cross-site request forgery (CSRF) protection. An attacker could exploit this vulnerability by tricking the user of a web application into executing an adverse action. Cisco Bug IDs: CSCvg30313.
Configurations

Configuration 1

cpe:2.3:a:cisco:prime_service_catalog:*:*:*:*:*:*:*:*

Information

Published : 2018-01-18 06:29

Updated : 2019-10-09 11:31


NVD link : CVE-2018-0107

Mitre link : CVE-2018-0107

Products Affected
No products.
CWE