CVE-2013-4050: CSRF
First published: Fri Nov 08 2013(Updated: )
Cross-site request forgery (CSRF) vulnerability in webadmin.nsf in Domino Web Administrator in IBM Domino 8.5 and 9.0 allows remote authenticated users to hijack the authentication of unspecified victims via unknown vectors.
Credit: psirt@us.ibm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IBM Lotus Domino Mail Server | =8.5.0 | |
| IBM Lotus Domino Mail Server | =9.0.0.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2013-4050?
CVE-2013-4050 is rated as a medium severity cross-site request forgery vulnerability.
How can I fix CVE-2013-4050?
To fix CVE-2013-4050, update to the latest version of IBM Lotus Domino that addresses this vulnerability.
Who is affected by CVE-2013-4050?
CVE-2013-4050 affects remote authenticated users of IBM Lotus Domino versions 8.5 and 9.0.
What types of attacks can CVE-2013-4050 enable?
CVE-2013-4050 may enable attackers to hijack the authentication of unspecified victims through CSRF attacks.
What software versions are impacted by CVE-2013-4050?
CVE-2013-4050 impacts IBM Lotus Domino versions 8.5.0 and 9.0.0.0.
- agent/references
- agent/first-publish-date
- agent/last-modified-date
- agent/type
- agent/severity
- agent/weakness
- agent/author
- agent/description
- agent/event
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/ibm
- canonical/ibm lotus domino mail server
- version/ibm lotus domino mail server/8.5.0
- version/ibm lotus domino mail server/9.0.0.0