CVE-2013-1088
published 2013-04-24CVE-2013-1088: Cross-site request forgery (CSRF) vulnerability in Novell iManager 2.7 before SP6 Patch 1 allows remote attackers to hijack the authentication of arbitrary…
medium6.8CVSS 3.1
AVNACMAuNCPIPAP
Cross-site request forgery (CSRF) vulnerability in Novell iManager 2.7 before SP6 Patch 1 allows remote attackers to hijack the authentication of arbitrary users by leveraging improper request validation by iManager code deployed within an Apache Tomcat container.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| novell | imanager | <= 2.7 | — |
| novell | imanager | — | — |
| novell | imanager | — | — |
| novell | imanager | — | — |
| novell | imanager | — | — |
| novell | imanager | — | — |
| novell | imanager | — | — |