CVE-2012-5950 in TRIRIGA Application Platforminfo

Zusammenfassung

von MITRE

Multiple cross-site request forgery (CSRF) vulnerabilities in IBM TRIRIGA Application Platform 2.x and 3.x before 3.3, and 8, allow remote attackers to hijack the authentication of arbitrary users for requests that modify data records via vectors involving (1) the html/en/default/ directory or (2) sqa/html/en/default/process/comm/saveProps.jsp.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservieren

21.11.2012

Veröffentlichung

23.04.2013

Moderieren

akzeptiert

Eintrag

VDB-64013

CPE

bereit

CWE

CWE-352 (bestätigt)

CVSS

6.3 (VulDB)

EPSS

0.00103

KEV

nein

Aktivitäten

very low

Sektor

Government, Transportation, ...

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2012-5950
NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-5950
CVE Details	https://www.cvedetails.com/cve/CVE-2012-5950/

◂ Zurück Übersicht Weiter ▸

Want to know what is going to be exploited?

We predict KEV entries!