Lucene search
HistoryFeb 01, 2014 - 3:55 p.m.
CVE-2014-0831
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7
Confidence
Low
EPSS
0.001
Percentile
48.7%
Cross-site request forgery (CSRF) vulnerability in the OAC component in IBM Financial Transaction Manager (FTM) 2.0 before 2.0.0.3 allows remote attackers to hijack the authentication of arbitrary users for requests that modify configuration data.
Affected configurations
Node
ibmfinancial_transaction_managerMatch2.0.0.0
ORibmfinancial_transaction_managerMatch2.0.0.1
ORibmfinancial_transaction_managerMatch2.0.0.2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ibm | financial_transaction_manager | 2.0.0.0 | cpe:2.3:a:ibm:financial_transaction_manager:2.0.0.0:*:*:*:*:*:*:* |
| ibm | financial_transaction_manager | 2.0.0.1 | cpe:2.3:a:ibm:financial_transaction_manager:2.0.0.1:*:*:*:*:*:*:* |
| ibm | financial_transaction_manager | 2.0.0.2 | cpe:2.3:a:ibm:financial_transaction_manager:2.0.0.2:*:*:*:*:*:*:* |
Related
prion
prion
Cross site request forgery (csrf)
2014-02-01 15:55:00
cvelist
cvelist
CVE-2014-0831
2014-02-01 15:00:00
cve
cve
CVE-2014-0831
2014-02-01 15:55:04
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7
Confidence
Low
EPSS
0.001
Percentile
48.7%
Related for NVD:CVE-2014-0831