CVE-2013-4057

2014-03-1610:00:00

ibm

www.cve.org

7 High

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

65.6%

JSON

Cross-site request forgery (CSRF) vulnerability in the XML Pack in IBM InfoSphere Information Server 8.5.x through 8.5 FP3, 8.7.x through 8.7 FP2, and 9.1.x through 9.1.2.0 allows remote attackers to hijack the authentication of arbitrary users.

References

www-01.ibm.com/support/docview.wss?uid=swg1JR48815

www-01.ibm.com/support/docview.wss?uid=swg1JR49200

www-01.ibm.com/support/docview.wss?uid=swg1JR49206

www-01.ibm.com/support/docview.wss?uid=swg21666684

www.securityfocus.com/bid/66154

exchange.xforce.ibmcloud.com/vulnerabilities/86546