Vulnerabilities > Darktrace > Enterprise Immune System > Medium

DATE CVE VULNERABILITY TITLE RISK
2019-10-23 CVE-2019-9597 Cross-Site Request Forgery (CSRF) vulnerability in Darktrace Enterprise Immune System 3.0.10/3.0.9
Darktrace Enterprise Immune System before 3.1 allows CSRF via the /config endpoint.
network
low complexity
darktrace CWE-352
6.5
6.5
2019-10-23 CVE-2019-9596 Cross-Site Request Forgery (CSRF) vulnerability in Darktrace Enterprise Immune System 3.0.10/3.0.9
Darktrace Enterprise Immune System before 3.1 allows CSRF via the /whitelisteddomains endpoint.
network
low complexity
darktrace CWE-352
6.5
6.5