IQID:12822 HTTP ManageEngine Network Configuration Management Build 11000 - Privilege Escalation S

IQID: 12822 - March 2016

ManageEngine Firewall Analyzer is vulnerable to CSRF. A remote attacker could send specially-crafted URL to the /nfaapi/json/admin/changePassword script, which could allow the attacker conduct a privilege escalation.

A Full Description is available for this threat, please sign in for access to Full Description.

 

Attack Data

Attack Data is available for this threat, please sign in for access to Attack Data.

 

CVSS Information

CVSS Information is available for this threat, please sign in for access to CVSS Information.

 

Date

Date Information is available for this threat, please sign in for access to Date Information.