Vulnerabilities > CVE-2020-10771

047910
CVSS 7.1 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
LOW
Availability impact
HIGH
network
low complexity
infinispan
redhat
netapp
NVD
Published: 2021-06-02
Updated: 2024-11-21

Summary

A flaw was found in Infinispan version 10, where it is possible to perform various actions that could have side effects using GET requests. This flaw allows an attacker to perform a cross-site request forgery (CSRF) attack.

Vulnerable Configurations

Part Description Count
Application
Infinispan
1
Application
Redhat
1
Application
Netapp
1

References