Cross-Site Request Forgery Vulnerability in Alcatel-Lucent OmniSwitch Products
CVE-2015-2805

Currently unrated

Key Information:

Vendor

Alcatel-lucent

Status
Omniswitch Firmware
Vendor
CVE Published:
16 June 2015

What is CVE-2015-2805?

A Cross-Site Request Forgery (CSRF) vulnerability exists in the management web interface of specific Alcatel-Lucent OmniSwitch products. This flaw allows attackers to exploit the vulnerability and perform unauthorized actions by crafting malicious requests. If successfully executed, an attacker could hijack an administrator's session, leading to the potential creation and management of user accounts without proper authentication. It is crucial for network administrators to apply necessary updates and safeguard against such exploits to enhance network security.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.securityfocus.com/archive/1/535732/100/0/threaded
mailing-listx_refsource_BUGTRAQ
https://www.redteam-pentesting.de/advisories/rt-sa-2015-004
x_refsource_MISC
http://www.securitytracker.com/id/1032544
vdb-entryx_refsource_SECTRACK

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.