CVE-2015-0651

Cross-site request forgery (CSRF) vulnerability in the web GUI in Cisco Application Networking Manager (ANM), and Device Manager (DM) on Cisco 4710 Application Control Engine (ACE) appliances, allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCuo99753.

Severity	MEDIUM
CVSS	6.8
EPSS	0.13% EPSS low
CWE	CWE-352
KEV
Published	11 years ago
Modified	2 weeks ago

Public Affected Products

Product	Advisory	Evidence
Cisco ACE 4700 Series Application Control Engine Appliances	Cisco-SA-20150227-CVE-2015-0651	Cisco CSAF · structured affected
Cisco Application Networking Manager (ANM)	Cisco-SA-20150227-CVE-2015-0651	Cisco CSAF · structured affected