IBM Cognos Express CSRF Authentication Hijacking Vulnerability

IBM Cognos Express CSRF Authentication Hijacking Vulnerability

CVE-2013-5443 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

Cross-site request forgery (CSRF) vulnerability in IBM Cognos Express 9.0 before IFIX 2, 9.5 before IFIX 2, 10.1 before IFIX 2, and 10.2.1 before FP1 allows remote attackers to hijack the authentication of arbitrary users.

Learn more about our Cis Benchmark Audit For Ibm I.