Lucene search
HistorySep 06, 2013 - 11:15 a.m.
CVE-2013-3605
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
6.9
Confidence
Low
EPSS
0.001
Percentile
45.6%
Cross-site request forgery (CSRF) vulnerability in Coursemill Learning Management System (LMS) 6.6 allows remote attackers to hijack the authentication of arbitrary users via vectors related to cookies.
Affected configurations
Node
trivantiscoursemill_learning_management_systemMatch6.6
| Vendor | Product | Version | CPE |
|---|---|---|---|
| trivantis | coursemill_learning_management_system | 6.6 | cpe:2.3:a:trivantis:coursemill_learning_management_system:6.6:*:*:*:*:*:*:* |
References
Related
prion
prion
Cross site request forgery (csrf)
2013-09-06 11:15:00
Cross site request forgery (csrf)
2013-09-06 11:15:00
cvelist
cvelist
CVE-2013-3605
2013-09-06 10:00:00
CVE-2013-5708
2013-09-06 10:00:00
cve
cve
CVE-2013-3605
2013-09-06 11:15:37
CVE-2013-5708
2013-09-06 11:15:40
nvd
nvd
CVE-2013-5708
2013-09-06 11:15:40
cert
cert
Coursemill Learning Management System contains multiple vulnerabilities
2013-08-30 00:00:00
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
6.9
Confidence
Low
EPSS
0.001
Percentile
45.6%
Related for NVD:CVE-2013-3605