CVE-2024-36452
July 10, 2024, 7:15 a.m.
Tags
Product(s) Impacted
Webmin
- before 2.003
Description
Cross-site request forgery vulnerability exists in ajaxterm module of Webmin versions prior to 2.003. If this vulnerability is exploited, unintended operations may be performed when a user views a malicious page while logged in. As a result, data within a system may be referred, a webpage may be altered, or a server may be permanently halted.
Weaknesses
Date
Published: July 10, 2024, 7:15 a.m.
Last Modified: July 10, 2024, 7:15 a.m.
Status : Received
CVE has been recently published to the CVE List and has been received by the NVD.
More infoSource
vultures@jpcert.or.jp
References
vultures@jpcert.or.jp
vultures@jpcert.or.jp