CVE-2020-3261: Cisco Mobility Express Software Cross-Site Request Forgery Vulnerability

First published: Wed Apr 15 2020(Updated: )

A vulnerability in the web-based management interface of Cisco Mobility Express Software could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack on an affected system. The vulnerability is due to insufficient CSRF protections for the web-based management interface on an affected device. An attacker could exploit this vulnerability by persuading a user with an active session on an affected device to follow a malicious link. A successful exploit could allow the attacker to perform arbitrary actions, including modifying the configuration, with the privilege level of the user.

Credit: ykramarz@cisco.com

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• agent/type
• collector/nvd-index
• agent/software-canonical-lookup-request
• agent/weakness
• agent/author
• agent/references
• agent/softwarecombine
• agent/description
• collector/mitre-cve
• source/MITRE
• agent/title
• agent/severity
• agent/last-modified-date
• agent/tags
• agent/first-publish-date
• agent/event
• vendor/cisco
• canonical/cisco aironet 1542i firmware
• version/cisco aironet 1542i firmware/8.0
• version/cisco aironet 1542i firmware/8.10\(1.255\)
• canonical/cisco aironet 1542i
• canonical/cisco aironet 1542d firmware
• version/cisco aironet 1542d firmware/8.0
• version/cisco aironet 1542d firmware/8.10\(1.255\)
• canonical/cisco aironet 1542d
• canonical/cisco aironet 1562i firmware
• version/cisco aironet 1562i firmware/8.0
• version/cisco aironet 1562i firmware/8.10\(1.255\)
• canonical/cisco aironet 1562i
• canonical/cisco aironet 1562e firmware
• version/cisco aironet 1562e firmware/8.0
• version/cisco aironet 1562e firmware/8.10\(1.255\)
• canonical/cisco aironet 1562e
• canonical/cisco aironet 1562d firmware
• version/cisco aironet 1562d firmware/8.0
• version/cisco aironet 1562d firmware/8.10\(1.255\)
• canonical/cisco aironet 1562d
• canonical/cisco aironet 1815 firmware
• version/cisco aironet 1815 firmware/8.0
• version/cisco aironet 1815 firmware/8.10\(1.255\)
• canonical/cisco aironet 1815
• canonical/cisco aironet 1830 firmware
• version/cisco aironet 1830 firmware/8.0
• version/cisco aironet 1830 firmware/8.10\(1.255\)
• canonical/cisco aironet 1830
• canonical/cisco aironet 1840 firmware
• version/cisco aironet 1840 firmware/8.0
• version/cisco aironet 1840 firmware/8.10\(1.255\)
• canonical/cisco aironet 1840
• canonical/cisco aironet 1850 firmware
• version/cisco aironet 1850 firmware/8.0
• version/cisco aironet 1850 firmware/8.10\(1.255\)
• canonical/cisco aironet 1850
• canonical/cisco aironet 2800i firmware
• version/cisco aironet 2800i firmware/8.0
• version/cisco aironet 2800i firmware/8.10\(1.255\)
• canonical/cisco aironet 2800i
• canonical/cisco aironet 2800e firmware
• version/cisco aironet 2800e firmware/8.0
• version/cisco aironet 2800e firmware/8.10\(1.255\)
• canonical/cisco aironet 2800e
• canonical/cisco aironet 3800i firmware
• version/cisco aironet 3800i firmware/8.0
• version/cisco aironet 3800i firmware/8.10\(1.255\)
• canonical/cisco aironet 3800i
• canonical/cisco aironet 3800e firmware
• version/cisco aironet 3800e firmware/8.0
• version/cisco aironet 3800e firmware/8.10\(1.255\)
• canonical/cisco aironet 3800e
• canonical/cisco aironet 3800p firmware
• version/cisco aironet 3800p firmware/8.0
• version/cisco aironet 3800p firmware/8.10\(1.255\)
• canonical/cisco aironet 3800p
• canonical/cisco aironet 4800 firmware
• version/cisco aironet 4800 firmware/8.0
• version/cisco aironet 4800 firmware/8.10\(1.255\)
• canonical/cisco aironet 4800
• canonical/cisco catalyst iw6300 firmware
• version/cisco catalyst iw6300 firmware/8.0
• version/cisco catalyst iw6300 firmware/8.10\(1.255\)
• canonical/cisco catalyst iw6300
• canonical/cisco 6300 series access points firmware
• version/cisco 6300 series access points firmware/8.0
• version/cisco 6300 series access points firmware/8.10\(1.255\)
• canonical/cisco 6300 series access points