Unrated severityNVD Advisory· Published May 12, 2008· Updated Jun 16, 2026
CVE-2008-2140
CVE-2008-2140
Description
Cross-site request forgery (CSRF) vulnerability in the rootpw plugin in rPath Appliance Platform Agent 2 and 3 allows remote attackers to reset the root password as the administrator via a crafted URL.
Affected products
3cpe:2.3:a:rpath:appliance_platform_agent:2:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:rpath:appliance_platform_agent:2:*:*:*:*:*:*:*
- cpe:2.3:a:rpath:appliance_platform_agent:3:*:*:*:*:*:*:*
- (no CPE)range: 2 and 3
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.