CVE-2009-1797

Name of the Vulnerable Software and Affected Versions: American Power Conversion (APC) Switched Rack PDU devices (affected versions not specified)

Description: The issue concerns multiple cross-site request forgery (CSRF) vulnerabilities on the Network Management Card (NMC) of affected devices. These vulnerabilities allow remote attackers to hijack the authentication of administrator or device users for requests, potentially creating new administrative users or having other unspecified impacts.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.