Jolokia Cross-Site Request Forgery (CSRF) Vulnerability - CVE-2018-10899 - Vulnerability Database

Jolokia Cross-Site Request Forgery (CSRF) Vulnerability - CVE-2018-10899

High

Reference: CVE-2018-10899

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2018-10899

Title: Jolokia Cross-Site Request Forgery (CSRF) Vulnerability

Overview:

A flaw was found in Jolokia versions from 1.2 to before 1.6.1. Affected versions are vulnerable to a system-wide CSRF. This holds true for properly configured instances with strict checking for origin and referrer headers. This could result in a Remote Code Execution attack.