CyberSec.Space Logo
返回 CVE 浏览器

CVE-2019-12636

HIGH
8.8
CVSS Severity Score
EPSS Score0.1690%
EPSS Percentile32.77th
Published2019年10月16日
Last Modified2024年11月21日

Vulnerability Description

A vulnerability in the web-based management interface of Cisco Small Business Smart and Managed Switches could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack on an affected system. The vulnerability is due to insufficient CSRF protections for the web-based management interface on an affected device. An attacker could exploit this vulnerability by persuading a user of the interface to follow a malicious link. A successful exploit could allow the attacker to perform arbitrary actions with the privilege level of the targeted user. If the user has administrative privileges, the attacker could alter the configuration, execute commands, or cause a denial of service (DoS) condition on an affected device.

Affected Platforms (CPE)

💻
Cisco

Sf250 24 Firmware

< 2.5.0.90
💻
Cisco

Sf250 24p Firmware

< 2.5.0.90
💻
Cisco

Sf250 48 Firmware

< 2.5.0.90
💻
Cisco

Sf250 48hp Firmware

< 2.5.0.90
💻
Cisco

Sf250 08 Firmware

< 2.5.0.90
💻
Cisco

Sf250 08hp Firmware

< 2.5.0.90
💻
Cisco

Sf250 10p Firmware

< 2.5.0.90
💻
Cisco

Sf250 18 Firmware

< 2.5.0.90
💻
Cisco

Sf250 26 Firmware

< 2.5.0.90
💻
Cisco

Sf250 26hp Firmware

< 2.5.0.90
💻
Cisco

Sf250 26p Firmware

< 2.5.0.90
💻
Cisco

Sf250 50 Firmware

< 2.5.0.90
💻
Cisco

Sf250 50hp Firmware

< 2.5.0.90
💻
Cisco

Sf250 50p Firmware

< 2.5.0.90
💻
Cisco

Sf250x 24 Firmware

< 2.5.0.90
💻
Cisco

Sf250x 24p Firmware

< 2.5.0.90
💻
Cisco

Sf250x 48 Firmware

< 2.5.0.90
💻
Cisco

Sf250x 48p Firmware

< 2.5.0.90
💻
Cisco

Sg350 10 Firmware

< 2.5.0.90
💻
Cisco

Sg350 10p Firmware

< 2.5.0.90
💻
Cisco

Sg350 10mp Firmware

< 2.5.0.90
💻
Cisco

Sg355 10p Firmware

< 2.5.0.90
💻
Cisco

Sg350 28 Firmware

< 2.5.0.90
💻
Cisco

Sg350 28p Firmware

< 2.5.0.90
💻
Cisco

Sg350 28mp Firmware

< 2.5.0.90
💻
Cisco

Sf350 48 Firmware

< 2.5.0.90
💻
Cisco

Sf350 48p Firmware

< 2.5.0.90
💻
Cisco

Sf350 48mp Firmware

< 2.5.0.90
💻
Cisco

Sx550x 16ft Firmware

< 2.5.0.90
💻
Cisco

Sx550x 24ft Firmware

< 2.5.0.90
💻
Cisco

Sx550x 12f Firmware

< 2.5.0.90
💻
Cisco

Sx550x 24f Firmware

< 2.5.0.90
💻
Cisco

Sx550x 24 Firmware

< 2.5.0.90
💻
Cisco

Sx550x 52 Firmware

< 2.5.0.90
💻
Cisco

Sg550x 24 Firmware

< 2.5.0.90
💻
Cisco

Sg550x 24p Firmware

< 2.5.0.90
💻
Cisco

Sg550x 24mp Firmware

< 2.5.0.90
💻
Cisco

Sg550x 24mpp Firmware

< 2.5.0.90
💻
Cisco

Sg550x 48 Firmware

< 2.5.0.90
💻
Cisco

Sg550x 48p Firmware

< 2.5.0.90
💻
Cisco

Sg550x 48mp Firmware

< 2.5.0.90
💻
Cisco

Sf550x 24 Firmware

< 2.5.0.90
💻
Cisco

Sf550x 24p Firmware

< 2.5.0.90
💻
Cisco

Sf550x 24mp Firmware

< 2.5.0.90
💻
Cisco

Sf550x 48 Firmware

< 2.5.0.90
💻
Cisco

Sf550x 48p Firmware

< 2.5.0.90
💻
Cisco

Sf550x 48mp Firmware

< 2.5.0.90
💻
Cisco

Sf200 24 Firmware

< 1.4.11
💻
Cisco

Sf200 24fp Firmware

< 1.4.11
💻
Cisco

Sf200 24p Firmware

< 1.4.11.02
💻
Cisco

Sf200 48 Firmware

< 1.4.11.02
💻
Cisco

Sf200 48p Firmware

< 1.4.11.02
💻
Cisco

Sf200e 24 Firmware

< 1.4.11.02
💻
Cisco

Sf200e 24p Firmware

< 1.4.11.02
💻
Cisco

Sf200e 48 Firmware

< 1.4.11.02
💻
Cisco

Sf200e48p Firmware

< 1.4.11.02
💻
Cisco

Sg200 08 Firmware

< 1.4.11.02
💻
Cisco

Sg200 08p Firmware

< 1.4.11.02
💻
Cisco

Sg200 10fp Firmware

< 1.4.11.02
💻
Cisco

Sg200 18 Firmware

< 1.4.11.02
💻
Cisco

Sg200 26 Firmware

< 1.4.11.02
💻
Cisco

Sg200 26fp Firmware

< 1.4.11.02
💻
Cisco

Sg200 26p Firmware

< 1.4.11.02
💻
Cisco

Sg200 50 Firmware

< 1.4.11.02
💻
Cisco

Sg200 50fp Firmware

< 1.4.11.02
💻
Cisco

Sg200 50p Firmware

< 1.4.11.02
💻
Cisco

Sf302 08pp Firmware

< 1.4.11.02
💻
Cisco

Sf302 08mpp Firmware

< 1.4.11.02
💻
Cisco

Sg300 10pp Firmware

< 1.4.11.02
💻
Cisco

Sg300 10mpp Firmware

< 1.4.11.02
💻
Cisco

Sf300 24pp Firmware

< 1.4.11.02
💻
Cisco

Sf300 48pp Firmware

< 1.4.11.02
💻
Cisco

Sg300 28pp Firmware

< 1.4.11.02
💻
Cisco

Sf300 08 Firmware

< 1.4.11.02
💻
Cisco

Sf300 48p Firmware

< 1.4.11.02
💻
Cisco

Sg300 10mp Firmware

< 1.4.11.02
💻
Cisco

Sg300 10p Firmware

< 1.4.11.02
💻
Cisco

Sg300 10 Firmware

< 1.4.11.02
💻
Cisco

Sg300 28p Firmware

< 1.4.11.02
💻
Cisco

Sf300 24p Firmware

< 1.4.11.02
💻
Cisco

Sf302 08mp Firmware

< 1.4.11.02
💻
Cisco

Sg300 28 Firmware

< 1.4.11.02
💻
Cisco

Sf300 48 Firmware

< 1.4.11.02
💻
Cisco

Sg300 20 Firmware

< 1.4.11.02
💻
Cisco

Sf302 08p Firmware

< 1.4.11.02
💻
Cisco

Sg300 52 Firmware

< 1.4.11.02
💻
Cisco

Sf300 24 Firmware

< 1.4.11.02
💻
Cisco

Sf302 08 Firmware

< 1.4.11.02
💻
Cisco

Sf300 24mp Firmware

< 1.4.11.02
💻
Cisco

Sg300 10sfp Firmware

< 1.4.11.02
💻
Cisco

Sg300 28mp Firmware

< 1.4.11.02
💻
Cisco

Sg300 52p Firmware

< 1.4.11.02
💻
Cisco

Sg300 52mp Firmware

< 1.4.11.02
💻
Cisco

Sg500 28mpp Firmware

< 1.4.11.02
💻
Cisco

Sg500 52mp Firmware

< 1.4.11.02
💻
Cisco

Sg500xg 8f8t Firmware

< 1.4.11.02
💻
Cisco

Sf500 24 Firmware

< 1.4.11.02
💻
Cisco

Sf500 24p Firmware

< 1.4.11.02
💻
Cisco

Sf500 48 Firmware

< 1.4.11.02
💻
Cisco

Sf500 48p Firmware

< 1.4.11.02
💻
Cisco

Sg500 28 Firmware

< 1.4.11.02
💻
Cisco

Sg500 28p Firmware

< 1.4.11.02
💻
Cisco

Sg500 52 Firmware

< 1.4.11.02
💻
Cisco

Sg500 52p Firmware

< 1.4.11.02
💻
Cisco

Sg500x 24 Firmware

< 1.4.11.02
💻
Cisco

Sg500x 24p Firmware

< 1.4.11.02
💻
Cisco

Sg500x 48 Firmware

< 1.4.11.02
💻
Cisco

Sg500x 48p Firmware

< 1.4.11.02

References & Advisories

🔗 https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20191016-sbss-csrf
🔗 https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20191016-sbss-csrf

相关漏洞威胁

CVE-2026-121917.8

A vulnerability was found in Comma AI Openpilot 0.11. This issue affects the function pickle.load/pickle.loads of the file selfdri...

CVE-2026-121905.3

A vulnerability has been found in Genspark AI Workspace App 2.8.4 on Android. This vulnerability affects unknown code of the compo...

CVE-2026-121895.3

A flaw has been found in Moovit Bus & Public Transit App 1.18 on Android. This affects an unknown part of the component com.tranzm...

CVE-2026-121886.3

A vulnerability was detected in Grit42 Grit up to 0.11.0. Affected by this issue is some unknown functionality of the file modules...