CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2007-3462

Cross-site request forgery (CSRF) vulnerability in Check Point SofaWare Safe@Office, with firmware before Embedded NGX 7.0.45 GA, allows remote attackers to execute commands as arbitrary users, and disable firewalling of the protected network.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.01

EPSS Ranking 76.5%

CVSS Severity

CVSS v2 Score 6.0

References

http://labs.calyptix.com/CX-2007-04.php
http://labs.calyptix.com/CX-2007-04.txt
http://osvdb.org/37644
http://secunia.com/advisories/25822
http://www.securityfocus.com/archive/1/472290/100/0/threaded
http://www.securitytracker.com/id?1018317
http://www.sofaware.com/supportDownloads.aspx?boneId=182
http://www.vupen.com/english/advisories/2007/2364
https://exchange.xforce.ibmcloud.com/vulnerabilities/35093
https://exchange.xforce.ibmcloud.com/vulnerabilities/35094
http://labs.calyptix.com/CX-2007-04.php
http://labs.calyptix.com/CX-2007-04.txt
http://osvdb.org/37644
http://secunia.com/advisories/25822
http://www.securityfocus.com/archive/1/472290/100/0/threaded
http://www.securitytracker.com/id?1018317
http://www.sofaware.com/supportDownloads.aspx?boneId=182
http://www.vupen.com/english/advisories/2007/2364
https://exchange.xforce.ibmcloud.com/vulnerabilities/35093
https://exchange.xforce.ibmcloud.com/vulnerabilities/35094

Products affected by CVE-2007-3462

Sofaware » Safe At Office 500 Utm » Version: embedded_ngx_7.0.39_ga

cpe:2.3:h:sofaware:safe_at_office_500_utm:embedded_ngx_7.0.39_ga

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-3462

Products

Pricing

Contact Us