CVE-2016-5401
published 2017-04-20CVE-2016-5401: Cross-site request forgery (CSRF) vulnerability in Red Hat JBoss BRMS and BPMS 6 allows remote attackers to hijack the authentication of users for requests…
high8.8CVSS 3.0
AVNACLPRNUIRSUCHIHAH
Cross-site request forgery (CSRF) vulnerability in Red Hat JBoss BRMS and BPMS 6 allows remote attackers to hijack the authentication of users for requests that modify instances via a crafted web page.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| redhat | jboss_bpm_suite | — | — |
| redhat | jboss_enterprise_brms_platform | — | — |