CVE-2013-0489

Cross-site request forgery (CSRF) vulnerability in webadmin.nsf (aka the Web Administrator client) in IBM Domino 8.5.x allows remote authenticated users to hijack the authentication of administrators.
CSRF
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:S/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Affected Products (NVD)
VendorProductVersion
ibmlotus_domino
8.5.0
ibmlotus_domino
8.5.0.1
ibmlotus_domino
8.5.1
ibmlotus_domino
8.5.1.1
ibmlotus_domino
8.5.1.2
ibmlotus_domino
8.5.1.3
ibmlotus_domino
8.5.1.4
ibmlotus_domino
8.5.1.5
ibmlotus_domino
8.5.2.0
ibmlotus_domino
8.5.2.1
ibmlotus_domino
8.5.2.2
ibmlotus_domino
8.5.2.3
ibmlotus_domino
8.5.2.4
ibmlotus_domino
8.5.3.0
ibmlotus_domino
8.5.3.1
ibmlotus_domino
8.5.3.2
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www-01.ibm.com/support/docview.wss?uid=swg21627597
https://exchange.xforce.ibmcloud.com/vulnerabilities/81854
http://www-01.ibm.com/support/docview.wss?uid=swg21627597
https://exchange.xforce.ibmcloud.com/vulnerabilities/81854