CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2012-3343

Cross-site request forgery (CSRF) vulnerability in Microdasys before 3.5.1-B708, as used in Bloxx Web Filtering before 5.0.14 and other products, allows remote attackers to hijack the authentication of arbitrary users for requests that trigger error pages containing XSS sequences, a different vulnerability than CVE-2012-2564.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 23.3%

CVSS Severity

CVSS v2 Score 6.8

References

http://www.kb.cert.org/vuls/id/722963
http://www.kb.cert.org/vuls/id/MAPG-8R9LBY
http://www.kb.cert.org/vuls/id/722963
http://www.kb.cert.org/vuls/id/MAPG-8R9LBY

Products affected by CVE-2012-3343

Bloxx » Web Filtering » Version: Any

cpe:2.3:a:bloxx:web_filtering:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-3343

Products

Pricing

Contact Us