CVE-2013-6443
EUVD-2013-625123.01.2014, 01:55
CloudForms 3.0 Management Engine before 5.2.1.6 allows remote attackers to bypass the Ruby on Rails protect_from_forgery mechanism and conduct cross-site request forgery (CSRF) attacks via a destructive action in a request.
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| redhat | cloudforms | 3.0 |
| redhat | cloudforms_3.0_management_engine | 𝑥 ≤ 5.2.1 |
| redhat | cloudforms_3.0_management_engine | 5.2 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration