CVE-2013-0532

Cross-site request forgery (CSRF) vulnerability in IBM Security AppScan Enterprise 5.6 and 8.x before 8.7 and IBM Rational Policy Tester 5.6 and 8.x before 8.5.0.4 allows remote attackers to hijack the authentication of arbitrary users for requests that cause a denial of service via malformed HTTP data.
CSRF
Severity
UNKNOWN
AV:N/AC:M/Au:N/C:P/I:P/A:P
Atk. Vector
NETWORK
Atk. Complexity
MEDIUM
Base Score
CVSS 3.x
EPSS Score
Percentile: 56%
VendorProductVersion
ibmsecurity_appscan
5.6.0.0
ibmsecurity_appscan
8.0.0.0
ibmsecurity_appscan
8.0.0.1
ibmsecurity_appscan
8.0.0.2
ibmsecurity_appscan
8.0.1.0
ibmsecurity_appscan
8.0.1.1
ibmsecurity_appscan
8.0.11
ibmsecurity_appscan
8.5.0.0
ibmsecurity_appscan
8.5.0.1
ibmsecurity_appscan
8.6.0.0
ibmsecurity_appscan
8.6.0.1
ibmsecurity_appscan
8.6.0.2
ibmrational_policy_tester
5.6.0.0
ibmrational_policy_tester
8.0.0.0
ibmrational_policy_tester
8.0.0.1
ibmrational_policy_tester
8.0.0.2
ibmrational_policy_tester
8.0.1.0
ibmrational_policy_tester
8.0.1.1
ibmrational_policy_tester
8.5.0.0
ibmrational_policy_tester
8.5.0.1
ibmrational_policy_tester
8.5.0.2
ibmrational_policy_tester
8.5.0.3
𝑥
= Vulnerable software versions