ID
VAR-E-201703-1171
CVE
| cve_id: | CVE-2017-5796 | Trust: 0.3 |
sources:
BID: 96813
TITLE
HP 2620 Series Network Switches CVE-2017-5796 Cross Site Request Forgery Vulnerability
Trust: 0.3
sources:
BID: 96813
DESCRIPTION
HP 2620 series network switches are prone to a cross-site request-forgery vulnerability because it fails to properly validate HTTP requests.
Exploiting this issue may allow a remote attacker to perform certain unauthorized administrative actions. Other attacks are also possible.
Trust: 0.3
sources:
BID: 96813
AFFECTED PRODUCTS
| vendor: | hp | model: | msr2000 ra.15.05.0006 | scope: | - | version: | - | Trust: 0.3 |
| vendor: | hp | model: | series network switches | scope: | eq | version: | 26200 | Trust: 0.3 |
| vendor: | hp | model: | msr2000 ra.15.15.0014 | scope: | ne | version: | - | Trust: 0.3 |
sources:
BID: 96813
EXPLOIT
To exploit this issue an attacker must entice a user into visiting a malicious site.
Trust: 0.3
sources:
BID: 96813
PRICE
Free
Trust: 0.3
sources:
BID: 96813
TYPE
Input Validation Error
Trust: 0.3
sources:
BID: 96813
CREDITS
The vendor reported this issue.
Trust: 0.3
sources:
BID: 96813
EXTERNAL IDS
| db: | NVD | id: | CVE-2017-5796 | Trust: 0.3 |
| db: | BID | id: | 96813 | Trust: 0.3 |
sources:
BID: 96813
REFERENCES
| url: | https://h20564.www2.hpe.com/hpsc/doc/public/display?docid=emr_na-hpesbhf03711en_us | Trust: 0.3 |
| url: | http://www.hp.com/ | Trust: 0.3 |
sources:
BID: 96813
SOURCES
| db: | BID | id: | 96813 |
LAST UPDATE DATE
2022-07-27T09:32:26.515000+00:00
SOURCES UPDATE DATE
| db: | BID | id: | 96813 | date: | 2017-03-16T04:01:00 |
SOURCES RELEASE DATE
| db: | BID | id: | 96813 | date: | 2017-03-09T00:00:00 |