A CSRF issue in WiKID 2FA Enterprise Server through 4.2.0-b2053 allows a remote attacker to trick an authenticated user into performing unintended actions such as (1) create or delete admin users; (2) create or delete groups; or (3) create, delete, enable, or disable normal users or devices.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2019-10-17T17:59:50

Updated: 2024-08-05T01:33:17.287Z

Reserved: 2019-10-04T00:00:00

Link: CVE-2019-17118

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2019-10-17T18:15:12.753

Modified: 2024-11-21T04:31:43.780

Link: CVE-2019-17118

cve-icon Redhat

No data.