Lucene search
IbmCVE-2013-4000HistoryDec 14, 2013 - 10:55 p.m.
CVE-2013-4000
2013-12-1422:55:02
CWE-352
ibm
web.nvd.nist.gov
19
ibm
cognos
command center
csrf
vulnerabilities
nvd
cve-2013-4000
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7.3
Confidence
Low
EPSS
0.001
Percentile
40.0%
Multiple cross-site request forgery (CSRF) vulnerabilities in IBM Cognos Command Center before 10.2 allow remote attackers to hijack the authentication of administrators for requests that (1) start or (2) stop services.
Affected configurations
Node
ibmcognos_command_centerRangeβ€10.1
ORibmcognos_command_centerMatch10.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ibm | cognos_command_center | * | cpe:2.3:a:ibm:cognos_command_center:*:*:*:*:*:*:*:* |
| ibm | cognos_command_center | 10.0 | cpe:2.3:a:ibm:cognos_command_center:10.0:*:*:*:*:*:*:* |
Related
prion
prion
Cross site request forgery (csrf)
2013-12-14 22:55:00
cvelist
cvelist
CVE-2013-4000
2013-12-14 22:00:00
seebug
seebug
IBM Cognos Command Centerθ·¨η«θ―·ζ±δΌͺι ζΌζ΄
2013-12-17 00:00:00
nvd
nvd
CVE-2013-4000
2013-12-14 22:55:02
ibm
ibm
New Security Bulletin for Cognos Command Center 10.1
2018-06-15 22:28:28
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7.3
Confidence
Low
EPSS
0.001
Percentile
40.0%
Related for CVE-2013-4000