CSRF Vulnerability in IBM InfoSphere BigInsights 2.0 to 2.1
CVE-2013-3992

Currently unrated

Key Information:

Vendor: IBM
Status: Infosphere Biginsights
Vendor: CVE Published:; 6 August 2013

Summary

A cross-site request forgery (CSRF) vulnerability exists in IBM InfoSphere BigInsights versions 2.0 and 2.1. This flaw allows remote authenticated users to hijack the authentication of other users, potentially leading to unauthorized actions being performed on their behalf without their consent. The attack is carried out via unspecified vectors, posing significant security risks to the affected systems and user data.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/84981

vdb-entryx_refsource_XF

http://www.securityfocus.com/bid/61604

vdb-entryx_refsource_BID

http://osvdb.org/95943

vdb-entryx_refsource_OSVDB

Timeline

Vulnerability published
Aug 6, 2013
Vulnerability Reserved
Jun 7, 2013