VYPR
High severity7.2NVD Advisory· Published Aug 1, 2016· Updated Jun 17, 2026

CVE-2016-1607

CVE-2016-1607

Description

Multiple cross-site request forgery (CSRF) vulnerabilities in the administrative interface in Novell Filr before 2.0 Security Update 2 allow remote attackers to hijack the authentication of administrators, as demonstrated by reconfiguring time settings via a vaconfig/time request.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • Novell/Filr3 versions
    cpe:2.3:a:novell:filr:*:security_update_1:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:novell:filr:*:security_update_1:*:*:*:*:*:*range: <=2.0
    • cpe:2.3:a:novell:filr:*:security_update_2:*:*:*:*:*:*range: <=1.2
    • (no CPE)range: <2.0 Security Update 2

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.