CVE-2012-3309

2012-08-29T22:55:00
ID CVE-2012-3309
Type cve
Reporter cve@mitre.org
Modified 2017-08-29T01:31:00

Description

Cross-site request forgery (CSRF) vulnerability in the account-creation panel in IBM InfoSphere Guardium 8.2 and earlier, when the CSRF filtering (aka csrf_status) feature is disabled, allows remote attackers to hijack the authentication of administrators for requests that create administrative accounts.