CFME: CSRF protection vulnerability via permissive check of the referrer header
References
Link | Resource |
---|---|
https://access.redhat.com/security/cve/cve-2014-0197 | Vendor Advisory |
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2014-0197 | Issue Tracking Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
13 Feb 2023, 00:36
Type | Values Removed | Values Added |
---|---|---|
Summary | CFME: CSRF protection vulnerability via permissive check of the referrer header | |
References |
|
02 Feb 2023, 14:16
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Summary | CVE-2014-0197 CFME: CSRF protection vulnerability in referrer header |
Information
Published : 2019-12-13 13:15
Updated : 2023-12-10 13:13
NVD link : CVE-2014-0197
Mitre link : CVE-2014-0197
CVE.ORG link : CVE-2014-0197
JSON object : View
Products Affected
redhat
- cloudforms_management_engine
- cloudforms
CWE
CWE-352
Cross-Site Request Forgery (CSRF)