CVE-2020-5900

State: PUBLISHED · Published: 2020-07-01 · Updated: 2024-08-04 · Assigner: f5

Description

In versions 3.0.0-3.4.0, 2.0.0-2.9.0, and 1.0.1, there is insufficient cross-site request forgery (CSRF) protections for the NGINX Controller user interface.

CWE

(none)

Affected

n/a / NGINX Controller — v=3.0.0-3.4.0, 2.0.0-2.9.0, 1.0.1 [affected]

CVSS

(none)

References

https://support.f5.com/csp/article/K31044532 x_refsource_MISC

Source

cvelistV5-main/cves/2020/5xxx/CVE-2020-5900.json