[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248364

 
 

909

 
 

195388

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2013-0580Date: (C)2013-10-10   (M)2023-12-22


Cross-site request forgery (CSRF) vulnerability in the Optim E-Business Console in IBM Data Growth Solution for Oracle E-business Suite 6.0 through 9.1 allows remote authenticated users to hijack the authentication of arbitrary users.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 4.9
Exploit Score: 4.4
Impact Score: 6.4
 
CVSS V2 Metrics:
Access Vector: ADJACENT_NETWORK
Access Complexity: MEDIUM
Authentication: SINGLE
Confidentiality: PARTIAL
Integrity: PARTIAL
Availability: PARTIAL
  
Reference:
http://www-01.ibm.com/support/docview.wss?uid=swg21651990
ibm-optim-cve20130580-csrf(83332)

CPE    18
cpe:/a:ibm:infosphere_optim_data_growth_for_oracle_e-business_suite:6.3.1
cpe:/a:ibm:infosphere_optim_data_growth_for_oracle_e-business_suite:6.4.0
cpe:/a:ibm:infosphere_optim_data_growth_for_oracle_e-business_suite:6.3.2
cpe:/a:ibm:infosphere_optim_data_growth_for_oracle_e-business_suite:6.4.1
...
CWE    1
CWE-352

© SecPod Technologies