CSRF Vulnerability in Optim E-Business Console by IBM
CVE-2013-0580

Currently unrated

Key Information:

Vendor: IBM
Status: Infosphere Optim Data Growth For Oracle E-business Suite
Vendor: CVE Published:; 10 October 2013

Summary

The Optim E-Business Console in IBM's Data Growth Solution for Oracle E-Business Suite versions 6.0 through 9.1 is susceptible to a cross-site request forgery (CSRF) vulnerability. This flaw allows remote, authenticated users to gain unauthorized access to other users' sessions and take control by hijacking their authentication credentials, which poses a significant security risk if exploited. It highlights the importance of implementing proper CSRF protection mechanisms to safeguard sensitive transactions within the application.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/83332

vdb-entryx_refsource_XF

http://www-01.ibm.com/support/docview.wss?uid=swg21651990

x_refsource_CONFIRM

Timeline

Vulnerability published
Oct 10, 2013
Vulnerability Reserved
Dec 16, 2012