CVE-2013-6188
Cross-site request forgery (CSRF) vulnerability in HP System Management Homepage (SMH) 7.1 through 7.2.2 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
Published at
2014-03-14T10:55Z
3557 days ago
Modified
2019-10-09T23:08Z
1522 days ago
CWE-352
Problem type
References
| URL | Type |
|---|---|
| SSRT101149 https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04039138 | HP |
GET https://vulnerabilitydata.com/api/details/CVE-2013-6188
{
"id": "CVE-2013-6188",
"published_date": "2014-03-14T10:55Z",
"last_modified_date": "2019-10-09T23:08Z",
"assigner": "hp-security-alert@hp.com",
"description": "Cross-site request forgery (CSRF) vulnerability in HP System Management Homepage (SMH) 7.1 through 7.2.2 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.",
"references": [
{
"url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04039138",
"name": "SSRT101149",
"refsource": "HP",
"tags": [
"Patch",
"Vendor Advisory"
]
}
],
"impact": {
"baseMetricV2": {
"cvssV2": {
"version": "2.0",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"accessVector": "NETWORK",
"accessComplexity": "MEDIUM",
"authentication": "NONE",
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8
},
"severity": "MEDIUM",
"exploitabilityScore": 8.6,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": true
}
},
"problem_type": "CWE-352"
}