Lucene search

K
cvelistIbmCVELIST:CVE-2016-0377
HistoryOct 22, 2016 - 1:00 a.m.

CVE-2016-0377

2016-10-2201:00:00
ibm
www.cve.org
7
ibm
websphere
csrf

AI Score

4

Confidence

High

EPSS

0.001

Percentile

44.8%

The Administrative Console in IBM WebSphere Application Server (WAS) 7.x before 7.0.0.43, 8.0.x before 8.0.0.13, and 8.5.x before 8.5.5.10 mishandles CSRFtoken cookies, which allows remote authenticated users to obtain sensitive information via unspecified vectors.

AI Score

4

Confidence

High

EPSS

0.001

Percentile

44.8%

Related for CVELIST:CVE-2016-0377