CVE-2024-45504
Published: Sep 10, 2024
Modified: Nov 4, 2024
Description
Cross-site request forgery (CSRF) vulnerability in multiple Alps System Integration products and the OEM products allow a remote unauthenticated attacker to hijack the authentication of the user and to perform unintended operations if the user views a malicious page while logged in.
| Vendor | Product | Versions |
|---|---|---|
Alps System Integration Co., Ltd. | InterSafe WebFilter | affected prior to V9.1SP4 Build1653 |
Alps System Integration Co., Ltd. | InterSafe LogDirector | affected versions before the replacement file released on 2024 September 9 |
Alps System Integration Co., Ltd. | InterSafe GatewayConnection | affected versions before 2024 July 20 maintenance |
Alps System Integration Co., Ltd. | InterSafe LogNavigator | affected prior to Ver.1.1.1 |
Alps System Integration Co., Ltd. | InterSafe CATS | affected versions before 2024 July 4 maintenance |
Alps System Integration Co., Ltd. | InterSafe MobileSecurity | affected versions before 2024 August 31 maintenance |
Trend Micro Incorporated | InterScan WebManager | affected 9.0affected 9.0 Service Pack 1affected 9.1affected 9.1 Service Pack 1affected 9.1 Service Pack 2+2 more versions |
MIROKU JYOHO SERVICE CO., LTD. | MJS WebFiltering | affected versions before 2024 July 4 maintenance |
Hammock Corporation | AssetView F | affected versions before 2024 July 4 maintenance |
MOTEX Inc. | LANSCOPE EndpointManager WebFiltering | affected versions before 2024 July 4 maintenance |
AXSEED,Inc. | SPPM BizBrowser | affected versions before 2024 June 18 maintenance |
AXSEED,Inc. | SPPM Secure Filtering | affected versions before 2024 July 20 maintenance |
QualitySoft Corporation | URL Filtering | affected versions before 2024 July 4 maintenance |
JMA Systems Corporation | KAITO SecureBrowser | affected versions before 2024 July 4 maintenance |
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now