2 matches found
CVE-2013-3472
Cross-site request forgery CSRF vulnerability in the Enterprise License Manager ELM in Cisco Unified Communications Manager CM allows remote attackers to hijack the authentication of arbitrary users for requests that make ELM modifications, aka Bug ID CSCui58210...
CVE-2013-3472
The CVE concerns Cisco Unified Communications Manager’s Enterprise License Manager (ELM) and a Cross-site Request Forgery (CSRF) flaw that lets an attacker hijack the authentication of arbitrary users to perform ELM-modifying requests. Affected component: ELM within CM; root cause: CSRF vulnerabi...