First published: Wed Jul 14 2021(Updated: )
Cross-site request forgery (CSRF) vulnerability in Software License Manager versions prior to 4.4.6 allows remote attackers to hijack the authentication of administrators via unspecified vectors.
Credit: vultures@jpcert.or.jp
Affected Software | Affected Version | How to fix |
---|---|---|
Tipsandtricks-hq Software License Manager | <4.4.6 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-20782 is a Cross-site request forgery (CSRF) vulnerability in Software License Manager versions prior to 4.4.6.
The severity of CVE-2021-20782 is high, with a severity value of 8.8.
CVE-2021-20782 allows remote attackers to hijack the authentication of administrators through unspecified vectors.
Software License Manager versions prior to 4.4.6 are affected by CVE-2021-20782.
To fix CVE-2021-20782, update to Software License Manager version 4.4.6 or later.