Cross-Site Request Forgery Risk in Smoothwall Express by Smoothwall
CVE-2014-9431

Currently unrated

Key Information:

Vendor: Smoothwall
Status: Smoothwall
Vendor: CVE Published:; 31 December 2014

What is CVE-2014-9431?

Smoothwall Express 3.1 and 3.0 SP3 are susceptible to multiple cross-site request forgery vulnerabilities. These flaws enable remote attackers to exploit authenticated sessions by sending unauthorized requests that change the administrator's credentials, specifically the admin and dial passwords. Attackers can perform these attacks by directing users to malicious URLs that trigger actions on the server without the users' consent, potentially compromising the security of the system.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/99403

vdb-entryx_refsource_XF

http://packetstormsecurity.com/files/129698/SmoothWall-3....

x_refsource_MISC

Timeline

Vulnerability published
Dec 31, 2014
Vulnerability Reserved
Dec 31, 2014

JSON

Smoothwall

What is CVE-2014-9431?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

References

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.