Lucene search
MitreCVE-2010-2151HistoryJun 03, 2010 - 4:30 p.m.
CVE-2010-2151
2010-06-0316:30:01
CWE-352
mitre
web.nvd.nist.gov
29
cve-2010-2151
csrf vulnerability
fujitsu e-pares
facility reservation data
hijack authentication
CVSS2
2.6
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:H/Au:N/C:N/I:P/A:N
AI Score
7.3
Confidence
Low
EPSS
0.002
Percentile
55.2%
Cross-site request forgery (CSRF) vulnerability in Fujitsu e-Pares V01 L01 V01 L01, L03, L10, L20, L30, and L40 allows remote attackers to hijack the authentication of users for requests that modify “facility reservation data” via unknown vectors.
Affected configurations
Node
fujitsue-paresMatchl01
ORfujitsue-paresMatchl03
ORfujitsue-paresMatchl10
ORfujitsue-paresMatchl20
ORfujitsue-paresMatchl30
ORfujitsue-paresMatchl40
ORfujitsue-paresMatchv01
| Vendor | Product | Version | CPE |
|---|---|---|---|
| fujitsu | e-pares | l01 | cpe:2.3:a:fujitsu:e-pares:l01:*:*:*:*:*:*:* |
| fujitsu | e-pares | l03 | cpe:2.3:a:fujitsu:e-pares:l03:*:*:*:*:*:*:* |
| fujitsu | e-pares | l10 | cpe:2.3:a:fujitsu:e-pares:l10:*:*:*:*:*:*:* |
| fujitsu | e-pares | l20 | cpe:2.3:a:fujitsu:e-pares:l20:*:*:*:*:*:*:* |
| fujitsu | e-pares | l30 | cpe:2.3:a:fujitsu:e-pares:l30:*:*:*:*:*:*:* |
| fujitsu | e-pares | l40 | cpe:2.3:a:fujitsu:e-pares:l40:*:*:*:*:*:*:* |
| fujitsu | e-pares | v01 | cpe:2.3:a:fujitsu:e-pares:v01:*:*:*:*:*:*:* |
Related
jvn
jvn
JVN#82465391: e-Pares vulnerable to cross-site request forgery
2010-06-02 00:00:00
nvd
nvd
CVE-2010-2151
2010-06-03 16:30:01
prion
prion
Cross site request forgery (csrf)
2010-06-03 16:30:00
cvelist
cvelist
CVE-2010-2151
2010-06-03 16:00:00
CVSS2
2.6
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:H/Au:N/C:N/I:P/A:N
AI Score
7.3
Confidence
Low
EPSS
0.002
Percentile
55.2%
Related for CVE-2010-2151