cpe:/a:emc:vipr_srm:3.6.4 CVE-2016-0891 2016-04-20T13:59:00.150-04:00 2018-10-09T15:58:57.300-04:00 6.8 NETWORK MEDIUM NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2017-01-10T22:18:18.210-05:00 BUGTRAQ 20160419 ESA-2016-039: EMC ViPR SRM Multiple Cross-Site Request Forgery Vulnerabilities BUGTRAQ 20160427 EMC M&R (Watch4net) lacks Cross-Site Request Forgery protection EXPLOIT-DB 39738 MISC http://packetstormsecurity.com/files/136733/EMC-ViPR-SRM-Cross-Site-Request-Forgery.html MISC http://packetstormsecurity.com/files/136837/EMC-ViPR-SRM-Cross-Site-Request-Forgery.html MISC https://www.securify.nl/advisory/SFY20141109/emc_m_r__watch4net__lacks_c%20ross_site_request_forgery_protection.html Multiple cross-site request forgery (CSRF) vulnerabilities in administrative pages in EMC ViPR SRM before 3.7 allow remote attackers to hijack the authentication of administrators.