CSRF in Ibm Lotus_domino

CVE-2013-4050

Cross-site request forgery (CSRF) vulnerability in webadmin.nsf in Domino Web Administrator in IBM Domino 8.5 and 9.0 allows remote authenticated users to hijack the authentication of unspecified victims via unknown vectors.

Vulnerability class: CSRF (Cross-Site Request Forgery)

EPSS: 0.001 (26.1th percentile) — read the EPSS interpretation.

Affected products

Ibm Lotus_domino — versions 8.5.0, 9.0.0.0
N/a — versions n/a

Weakness classification (CWE)

CWE-352 — Cross-Site Request Forgery (CSRF)

References

domino-webadmin-cve20134050-csrf(86433) (vdb-entry, x_refsource_XF)
psirt@us.ibm.com (x_refsource_CONFIRM, Vendor Advisory)