TROYANOSYVIRUS
Voltar para CVEs

CVE-2016-5401

N/A

Descricao

Cross-site request forgery (CSRF) vulnerability in Red Hat JBoss BRMS and BPMS 6 allows remote attackers to hijack the authentication of users for requests that modify instances via a crafted web page.

Detalhes CVE

Pontuacao CVSS v3.1N/A
Publicado4/20/2017
Ultima modificacao4/20/2025
Fontenvd
Avistamentos honeypot0

Produtos afetados

redhat:jboss_bpm_suiteredhat:jboss_enterprise_brms_platform

Fraquezas (CWE)

CWE-352

Referencias

https://bugzilla.redhat.com/show_bug.cgi?id=1357731(secalert@redhat.com)
https://bugzilla.redhat.com/show_bug.cgi?id=1357731(af854a3a-2127-422b-91ae-364da2661108)

Correlacoes IOC

Sem correlacoes registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.