CVE-2012-5308

Currently unrated

Key Information:

Vendor
IBM
Vendor
CVE Published:
8 October 2012

Summary

Cross-site request forgery (CSRF) vulnerability in servlet/traveler in IBM Lotus Notes Traveler through 8.5.3.3 Interim Fix 1 allows remote attackers to hijack the authentication of arbitrary users for requests that create problem reports via a getReportProblem upload action.

References

Timeline

  • Vulnerability Reserved

  • Vulnerability published

.