Vulnerabilities > Checkpoint > VPN 1 UTM Edge > 7.0.33
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-06-29 | CVE-2007-3489 | Cross-Site Request Forgery vulnerability in Checkpoint Vpn-1 UTM Edge 7.0.33 Cross-site request forgery (CSRF) vulnerability in pop/WizU.html in the management interface in Check Point VPN-1 Edge X Embedded NGX 7.0.33x on the Check Point VPN-1 UTM Edge allows remote attackers to perform privileged actions as administrators, as demonstrated by a request with the swuuser and swupass parameters, which adds an administrator account. | 9.3 |