exploitDog

CVE-2008-6106

Опубликовано: 10 фев. 2009

Источник: nvd

CVSS2: 6.8

EPSS Низкий

Описание

Cross-site request forgery (CSRF) vulnerability in IBM Workplace for Business Controls and Reporting 2.x and IBM Workplace Web Content Management 6.x has unknown impact and remote attack vectors. NOTE: some of these details are obtained from third party information.

Ссылки

http://secunia.com/advisories/30433
Vendor Advisory
http://www-1.ibm.com/support/docview.wss?uid=swg1PJ33180
Vendor Advisory
http://www.securitytracker.com/id?1020236
http://secunia.com/advisories/30433
Vendor Advisory
http://www-1.ibm.com/support/docview.wss?uid=swg1PJ33180
Vendor Advisory
http://www.securitytracker.com/id?1020236

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:ibm:workplace_for_business_controls_and_reporting:2.0:*:*:*:*:*:*:*

cpe:2.3:a:ibm:workplace_web_content_management:6.0:*:*:*:*:*:*:*

EPSS

Процентиль: 18%

0.00059

Низкий

6.8 Medium

CVSS2

Дефекты

CWE-352

Связанные уязвимости

GHSA-9cg9-g7wc-7q34

github

больше 3 лет назад

Cross-site request forgery (CSRF) vulnerability in IBM Workplace for Business Controls and Reporting 2.x and IBM Workplace Web Content Management 6.x has unknown impact and remote attack vectors. NOTE: some of these details are obtained from third party information.

EPSS

Процентиль: 18%

0.00059

Низкий

6.8 Medium

CVSS2

Дефекты

CWE-352