Vulnerability Details CVE-2015-0651
Cross-site request forgery (CSRF) vulnerability in the web GUI in Cisco Application Networking Manager (ANM), and Device Manager (DM) on Cisco 4710 Application Control Engine (ACE) appliances, allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCuo99753.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 34.1%
CVSS Severity
CVSS v2 Score 6.8
References
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0651
- http://www.securityfocus.com/bid/72796
- http://www.securitytracker.com/id/1031815
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0651
- http://www.securityfocus.com/bid/72796
- http://www.securitytracker.com/id/1031815
Products affected by CVE-2015-0651
-
cpe:2.3:a:cisco:application_networking_manager:-