Description
Cross-site request forgery (CSRF) vulnerability in the management interface in FreeIPA before 2.1.4 allows remote attackers to hijack the authentication of administrators for requests that make configuration changes.
Affected products
- RedHat / freeipa2.1.3
- RedHat / freeipa0.99 – 0.99
- RedHat / freeipa0.99698-20080228 – 0.99698-20080228
- RedHat / freeipa0.99698641-20080218 – 0.99698641-20080218
- RedHat / freeipa1.0.0 – 1.0.0
- RedHat / freeipa1.0.0 – 1.0.0
- RedHat / freeipa1.0.0 – 1.0.0
- RedHat / freeipa1.1.0 – 1.1.0
- RedHat / freeipa1.1.1 – 1.1.1
- RedHat / freeipa1.2.0 – 1.2.0
- RedHat / freeipa1.2.1 – 1.2.1
- RedHat / freeipa1.2.2 – 1.2.2
- RedHat / freeipa1.9.0 – 1.9.0
- RedHat / freeipa1.9.0 – 1.9.0
- RedHat / freeipa1.9.0 – 1.9.0
- RedHat / freeipa1.9.0 – 1.9.0
- RedHat / freeipa1.9.0 – 1.9.0
- RedHat / freeipa2.0.0 – 2.0.0
- RedHat / freeipa2.0.0 – 2.0.0
- RedHat / freeipa2.0.0 – 2.0.0
- RedHat / freeipa2.0.0 – 2.0.0
- RedHat / freeipa2.0.0 – 2.0.0
- RedHat / freeipa2.0.0 – 2.0.0
- RedHat / freeipa2.0.1 – 2.0.1
- RedHat / freeipa2.1.0 – 2.1.0
- RedHat / freeipa2.1.1 – 2.1.1
- RedHat / freeipa2.1.2 – 2.1.2