Unrated severityNVD Advisory· Published Oct 6, 2014· Updated Jun 17, 2026
CVE-2014-6409
CVE-2014-6409
Description
Cross-site request forgery (CSRF) vulnerability in M/Monit 3.3.2 and earlier allows remote attackers to hijack the authentication of administrators for requests that change user passwords via the fullname and password parameters to /admin/users/update.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:mmonit:m\/monit:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:mmonit:m\/monit:*:*:*:*:*:*:*:*range: <=3.3.2
- (no CPE)range: <=3.3.2
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.