|Date: (C)2012-05-03 (M)2017-08-29|
|CVSS Score: 6.0||Access Vector: NETWORK|
|Exploitability Subscore: 6.8||Access Complexity: MEDIUM|
|Impact Subscore: 6.4||Authentication: SINGLE_INSTANCE|
| ||Confidentiality: PARTIAL|
| ||Integrity: PARTIAL|
| ||Availability: PARTIAL|
Multiple cross-site request forgery (CSRF) vulnerabilities in IBM Rational AppScan Enterprise 5.x and 8.x before 184.108.40.206 allow remote attackers to hijack the authentication of administrators for requests that create administrative accounts.