Intersafe · Intersafe Webfilter · CVE-2024-45504
Name of the Vulnerable Software and Affected Versions:
Alps System Integration products (affected versions not specified)
InterSafe WebFilter (affected versions not specified)
Description:
A cross-site request forgery (CSRF) issue allows a remote unauthenticated attacker to hijack the authentication of the user and perform unintended operations if the user views a malicious page while logged in. This can lead to unauthorized actions.
Recommendations:
For Alps System Integration products, upgrade the affected component as soon as possible to mitigate the risk.
For InterSafe WebFilter, upgrade the affected component as soon as possible to mitigate the risk.
As a temporary workaround, consider restricting access to sensitive operations while logged in to minimize the risk of exploitation.