Cross-Site Request Forgery Vulnerability in HP Insight Control Suite for Linux
CVE-2009-2677

Currently unrated

Key Information:

Vendor: HP
Status: Insight Control Suite For Linux
Vendor: CVE Published:; 14 August 2009

Summary

A Cross-Site Request Forgery (CSRF) vulnerability exists in the HP Insight Control Suite For Linux prior to version 2.11. This vulnerability enables remote attackers to potentially hijack user authentication, exploiting unspecified vectors to manipulate legitimate users' actions without their consent. Given the nature of CSRF attacks, this could lead to unauthorized operations within the affected software, accentuating the need for immediate attention and remediation to safeguard user integrity and system security.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/52464

vdb-entryx_refsource_XF

http://marc.info/?l=bugtraq&m=125017764422557&w=2

vendor-advisoryx_refsource_HP

http://marc.info/?l=bugtraq&m=125017764422557&w=2

vendor-advisoryx_refsource_HP

Timeline

Vulnerability published
Aug 14, 2009
Vulnerability Reserved
Aug 5, 2009