CVE-2020-13412

An issue was discovered in Aviatrix Controller before 5.4.1204. An API call on the web interface lacked a session token check to control access, leading to CSRF.

Date published : 2020-05-22

https://docs.aviatrix.com/HowTos/security_bulletin_article.html#cross-site-request-forgery-csrf