CVE-2021-26961

UNKNOWN

Published 2021-03-05T15:50:56

Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2021-26961. We'll provide specific mitigation strategies based on your environment and risk profile.

No CVSS data available

Description

A remote unauthenticated cross-site request forgery (csrf) vulnerability was discovered in Aruba AirWave Management Platform version(s): Prior to 8.2.12.0. A vulnerability in the AirWave web-based management interface could allow an unauthenticated remote attacker to conduct a CSRF attack against a vulnerable system. A successful exploit would consist of an attacker persuading an authorized user to follow a malicious link, resulting in arbitrary actions being carried out with the privilege level of the targeted user.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

⚠ Unreviewed HIGH

GHSA-27wp-xpgf-2rjq

Advisory Details

CVSS Scoring

CVSS Score

7.5

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2021-26961

WEB https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2021-005.txt

Advisory provided by GitHub Security Advisory Database. Published: May 24, 2022, Modified: May 24, 2022

References

https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2021-005.txt

Published: 2021-03-05T15:50:56

Last Modified: 2024-08-03T20:33:41.562Z

Copied to clipboard!

CVE-2021-26961

Expert Analysis

Description

Available Exploits

Related News

GitHub Security Advisories

Advisory Details

CVSS Scoring

CVSS Score

References

References

Request Analysis

What to expect

Request Received!