vulnerability
FreeBSD: VID-7A92E958-5207-11E7-8D7C-6805CA0B3D42 (CVE-2017-5943): rt and dependent modules -- multiple security vulnerabilities
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:N/AC:M/Au:N/C:P/I:P/A:P) | Jun 15, 2017 | Jun 16, 2017 | May 7, 2019 |
Severity
7
CVSS
(AV:N/AC:M/Au:N/C:P/I:P/A:P)
Published
Jun 15, 2017
Added
Jun 16, 2017
Modified
May 7, 2019
Description
Request Tracker (RT) 4.x before 4.0.25, 4.2.x before 4.2.14, and 4.4.x before 4.4.2 allows remote attackers to obtain sensitive information about cross-site request forgery (CSRF) verification tokens via a crafted URL.
Solutions
freebsd-upgrade-package-p5-rt-authen-externalauthfreebsd-upgrade-package-rt42freebsd-upgrade-package-rt44
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.