CVE-2012-2605

Bradford Network Sentry <5.3.3 - CSRF

Title source: llm
STIX 2.1

Description

Multiple cross-site request forgery (CSRF) vulnerabilities in the administrative interface in Bradford Network Sentry before 5.3.3 allow remote attackers to hijack the authentication of administrators for requests that (1) insert XSS sequences or (2) send messages to clients.

References (3)

Core 3
Core References
US Government Resource x_refsource_confirm
http://www.kb.cert.org/vuls/id/MAPG-8TJKAF
US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/709939

Scores

EPSS 0.0076
EPSS Percentile 51.0%

Details

CWE
CWE-352
Status published
Products (3)
bradfordnetworks/network_sentry_appliance ns500rx
bradfordnetworks/network_sentry_appliance ns500x
bradfordnetworks/network_sentry_appliance_software < 5.3
Published Jun 13, 2012
Tracked Since Feb 18, 2026