CSRF Vulnerability in Symantec Data Loss Prevention Administration Console

CSRF Vulnerability in Symantec Data Loss Prevention Administration Console

CVE-2015-1485 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

Cross-site request forgery (CSRF) vulnerability in the administration console in the Enforce Server in Symantec Data Loss Prevention (DLP) before 12.5.2 allows remote attackers to hijack the authentication of administrators.

Learn more about our Cis Benchmark Audit For Server Software.