CSRF Vulnerabilities in Mutare EVM Allow Remote Authentication Hijacking

CSRF Vulnerabilities in Mutare EVM Allow Remote Authentication Hijacking

CVE-2011-1104 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

Multiple cross-site request forgery (CSRF) vulnerabilities in Mutare EVM allow remote attackers to hijack the authentication of arbitrary users for requests that (1) change a PIN, (2) delete messages, (3) add a delivery address, or (4) change a delivery address.

Learn more about our User Device Pen Test.