CSRF Vulnerability in HP 2620 Switches Allows Remote Password Hijacking

CVE-2013-6852 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

Cross-site request forgery (CSRF) vulnerability in html/json.html on HP 2620 switches allows remote attackers to hijack the authentication of administrators for requests that change an administrative password via the setPassword method.

Learn more about our Web Application Penetration Testing UK.