Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:61919
HistoryMar 25, 2014 - 12:00 a.m.

IBM Cognos Express跨站请求伪造漏洞

2014-03-2500:00:00
Root
www.seebug.org
8

0.001 Low

EPSS

Percentile

39.5%

JSON

Bugtraq ID:66357
CVE ID:CVE-2013-5443

IBM Cognos Express是一款为满足中型企业的需求而构建的商业智能和计划集成解决方案。

IBM Cognos Express存在一个跨站请求伪造漏洞,允许远程攻击者构建恶意URI,诱使用户解析,可以目标用户上下文执行恶意操作。
0
IBM Cognos Express 10.2.1
IBM Cognos Express 10.1
IBM Cognos Express 9.5
IBM Cognos Express 9.0
用户可参考如下厂商提供的安全公告获取补丁以修复该漏洞::
http://www-01.ibm.com/support/docview.wss?uid=swg21667626

Related

cve 1
prion 1
ibm 1
cve
cve
CVE-2013-5443
2014-03-25 20:55:00
prion
prion
Cross site request forgery (csrf)
2014-03-25 20:55:00
ibm
ibm
Security Bulletin: Multiple vulnerabilities in IBM Cognos Express (CVE-2013-5443, CVE-2013-5445, CVE-2013-5444, CVE-2013-2407, CVE-2013-2450, CVE-2013-0169, CVE-2013-1478, CVE-2013-1480)
2022-11-10 12:06:25

0.001 Low

EPSS

Percentile

39.5%

JSON
Related for SSV:61919
cve1prion1ibm1