Cross-Site Request Forgery Vulnerability in IBM Domino Web Administrator
CVE-2013-0489

Currently unrated

Key Information:

Vendor: IBM
Status: Lotus Domino
Vendor: CVE Published:; 27 March 2013

Summary

A Cross-Site Request Forgery (CSRF) vulnerability exists in the webadmin.nsf component of IBM Domino 8.5.x. This flaw allows remote authenticated users to initiate unauthorized requests that can hijack the authentication session of administrators. By exploiting this vulnerability, an attacker could manipulate the web administrator client, potentially leading to unauthorized changes and access within the IBM Domino environment.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/81854

vdb-entryx_refsource_XF

http://www-01.ibm.com/support/docview.wss?uid=swg21627597

x_refsource_CONFIRM

Timeline

Vulnerability published
Mar 27, 2013
Vulnerability Reserved
Dec 16, 2012