Vulnerabilities > FOX IT > FOX Datadiode
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2014-10-19 | CVE-2014-2358 | Cross-Site Request Forgery (CSRF) vulnerability in Fox-It FOX Datadiode 1.7.1 Multiple cross-site request forgery (CSRF) vulnerabilities in the administrative web interface in the proxy server on Fox-IT Fox DataDiode appliances before 1.7.2 allow remote attackers to hijack the authentication of administrators for requests that (1) create administrative users, (2) remove administrative users, or (3) change permissions. | 6.8 |