Cross-Site Request Forgery Vulnerability in HPE Version Control Repository Manager
CVE-2016-8513
8HIGH
Key Information:
- Vendor
HP
- Vendor
- CVE Published:
- 15 February 2018
What is CVE-2016-8513?
A Cross-Site Request Forgery (CSRF) vulnerability exists in the HPE Version Control Repository Manager (VCRM) that allows an attacker to trick users into unknowingly executing actions on behalf of the attacker. This weakness is present in all versions prior to 7.6. By exploiting this vulnerability, malicious actors could perform potentially harmful operations without the user's consent, compromising the integrity and security of the affected systems. Users are strongly encouraged to upgrade to version 7.6 or later to mitigate this risk.
Affected Version(s)
Version Control Repository Manager (VCRM) All versions prior to 7.6