CVE-2008-2140

NONE EPSS 33.1%
Published May 12, 200818y ago · Modified Jun 16, 20262w ago
Find Similar
Published May 12, 2008 18y ago
Last Modified Jun 16, 2026 2w ago

Description

Cross-site request forgery (CSRF) vulnerability in the rootpw plugin in rPath Appliance Platform Agent 2 and 3 allows remote attackers to reset the root password as the administrator via a crafted URL.

Threat Intelligence

EPSS Exploit Probability
33.1% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-352 Cross-Site Request Forgery (CSRF) Authentication

Affected Products 2

VendorProductVersionRange
rpathappliance_platform_agent2any
rpathappliance_platform_agent3any

References 2

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.