What is CVE-2010-2594?

CVE-2010-2594 is a vulnerability in Ibm Aix, classified under Cross-Site Request Forgery (CSRF). Published 2010-07-02.

Is CVE-2010-2594 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

CSRF in Ibm Aix

CVE-2010-2594

Multiple cross-site request forgery (CSRF) vulnerabilities in the web management interface in InterSect Alliance Snare Agent 3.2.3 and earlier on Solaris, Snare Agent 3.1.7 and earlier on Windows, Snare Agent 1.5.0 and earlier on Linux and…

Vulnerability class: CSRF (Cross-Site Request Forgery)

EPSS: 0.002 (39.1th percentile) — read the EPSS interpretation.

Affected products

Ibm Aix
Intersect_alliance Snare_agent — versions 0.9.6, 3.1.4, 3.1.2
Intersect_alliance Snare_epilog — versions 1.5.1, 1.3, 1.4.0
Linux Linux_kernel
Microsoft Windows
Microsoft Windows_2000
Microsoft Windows_2003_server
Microsoft Windows_7
Microsoft Windows_server_2008
Microsoft Windows_vista

Weakness classification (CWE)

CWE-352 — Cross-Site Request Forgery (CSRF)

Public proof-of-concept exploits

fkie-cad/nvd-json-data-feeds

References

cve@mitre.org (x_refsource_MISC, Third Party Advisory)
41226 (VDB Entry, Third Party Advisory, vdb-entry, x_refsource_BID)
39562 (x_refsource_SECUNIA, Broken Link, third-party-advisory)
VU#173009 (US Government Resource, x_refsource_CERT-VN, Third Party Advisory, third-party-advisory)

Frequently asked questions

What is CVE-2010-2594?: CVE-2010-2594 is a vulnerability in Ibm Aix, classified under Cross-Site Request Forgery (CSRF). Published 2010-07-02.
Is CVE-2010-2594 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.