CVE-2012-5216
HP ProCurve Switch Software < VA.02.09 - Cross-Site Request Forgery
Title source: llmDescription
Cross-site request forgery (CSRF) vulnerability on HP ProCurve 1700-8 (aka J9079A) switches with software before VA.02.09 and 1700-24 (aka J9080A) switches with software before VB.02.09 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
References (2)
Core 2
Core References
Vendor Advisory vendor-advisory
x_refsource_hp
https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03699981
Third Party Advisory third-party-advisory
x_refsource_jvn
http://jvn.jp/en/jp/JVN48108258/index.html
Scores
EPSS
0.0013
EPSS Percentile
32.1%
Details
CWE
CWE-352
Status
published
Products (49)
hp/procurve_switch_1700-24
hp/procurve_switch_1700-8
hp/procurve_switch_software
h 10.74 (2 CPE variants)
hp/procurve_switch_software
h.07.02
hp/procurve_switch_software
h.07.03
hp/procurve_switch_software
h.07.31
hp/procurve_switch_software
h.07.32
hp/procurve_switch_software
h.07.41
hp/procurve_switch_software
h.07.45
hp/procurve_switch_software
h.07.46
... and 39 more
Published
Mar 28, 2013
Tracked Since
Feb 18, 2026