MidnightBSD

Advisories for zenprise

CVE-2011-4498 MEDIUM

Cross-site request forgery (CSRF) vulnerability in the web console in Zenprise Device Manager 6.x through 6.1.8 allows remote attackers to hijack the authentication of administrators for requests that wipe mobile devices.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
zenprise zenprise_device_manager 6.1.5
zenprise zenprise_device_manager 6.0
zenprise zenprise_device_manager 6.1.8
zenprise zenprise_device_manager 6.1.0
zenprise zenprise_device_manager 6.1.6