CVE-2013-4405: CSRF
First published: Mon Dec 23 2013(Updated: )
Multiple cross-site request forgery (CSRF) vulnerabilities in the web interface for cumin in Red Hat Enterprise MRG Grid 2.4 allow remote attackers to hijack the authentication of cumin users for unspecified requests.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat enterprise MRG | =2.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2013-4405?
CVE-2013-4405 is classified as a medium severity vulnerability due to its potential for cross-site request forgery attacks.
How do I fix CVE-2013-4405?
To fix CVE-2013-4405, it is recommended to apply the security patches provided by Red Hat for the affected version of Enterprise MRG Grid.
Who is affected by CVE-2013-4405?
CVE-2013-4405 affects users of Red Hat Enterprise MRG Grid version 2.4.
What types of attacks can exploit CVE-2013-4405?
CVE-2013-4405 can be exploited to carry out cross-site request forgery attacks, allowing unauthorized actions on behalf of authenticated users.
Is CVE-2013-4405 a remote vulnerability?
Yes, CVE-2013-4405 is considered a remote vulnerability as it can be exploited by attackers without physical access to the system.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/author
- agent/last-modified-date
- agent/severity
- agent/event
- agent/first-publish-date
- agent/description
- agent/source
- agent/weakness
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/redhat
- canonical/redhat enterprise mrg
- version/redhat enterprise mrg/2.4