Multiple IBM Products CVE-2014-3037 Cross Site Request Forgery Vulnerability
BID:69658
CVE-2014-3037 |Info
Multiple IBM Products CVE-2014-3037 Cross Site Request Forgery Vulnerability
| Bugtraq ID: | 69658 |
| Class: | Input Validation Error |
| CVE: |
CVE-2014-3037 |
| Remote: | Yes |
| Local: | No |
| Published: | Sep 05 2014 12:00AM |
| Updated: | Sep 05 2014 12:00AM |
| Credit: | IBM |
| Vulnerable: |
IBM Rational Software Architect Design Manager 4.0.3 IBM Rational Software Architect Design Manager 4.0.2 IBM Rational Software Architect Design Manager 4.0.1 IBM Rational Software Architect Design Manager 3.0.1 IBM Rational Software Architect Design Manager 3.0 1 IBM Rational Software Architect Design Manager 5.0 IBM Rational Software Architect Design Manager 4.0.6 IBM Rational Software Architect Design Manager 4.0.5 IBM Rational Software Architect Design Manager 4.0.4 IBM Rational Software Architect Design Manager 4.0.0 IBM Rational Software Architect Design Manager 4.0 IBM Rational Software Architect Design Manager 3.0 IBM Rational Rhapsody Design Manager 4.0.4 IBM Rational Rhapsody Design Manager 4.0.3 IBM Rational Rhapsody Design Manager 4.0.2 IBM Rational Rhapsody Design Manager 4.0.1 IBM Rational Rhapsody Design Manager 5.0 IBM Rational Rhapsody Design Manager 4.0.6 IBM Rational Rhapsody Design Manager 4.0.5 IBM Rational Rhapsody Design Manager 4.0.0 IBM Rational Rhapsody Design Manager 4.0 IBM Rational Rhapsody Design Manager 3.0.1 IBM Rational Rhapsody Design Manager 3.0.0.1 IBM Rational Rhapsody Design Manager 3.0 IBM Rational Engineering Lifecycle Manager 4.0.5 IBM Rational Engineering Lifecycle Manager 4.0.4 IBM Rational Engineering Lifecycle Manager 4.0.3 IBM Rational Engineering Lifecycle Manager 5.0 IBM Rational Engineering Lifecycle Manager 4.0.6 IBM Rational Engineering Lifecycle Manager 1.0.0.1 IBM Rational Engineering Lifecycle Manager 1.0 |
| Not Vulnerable: |
IBM Rational Software Architect Design Manager 5.0.1 IBM Rational Software Architect Design Manager 4.0.7 IBM Rational Rhapsody Design Manager 5.0.1 IBM Rational Rhapsody Design Manager 4.0.7 IBM Rational Engineering Lifecycle Manager 5.0.1 IBM Rational Engineering Lifecycle Manager 4.0.7 |
Exploit / POC
Multiple IBM Products CVE-2014-3037 Cross Site Request Forgery Vulnerability
An attacker can exploit this issue by enticing an unsuspecting user to follow a malicious URI.
An attacker can exploit this issue by enticing an unsuspecting user to follow a malicious URI.