CSRF Vulnerability in Serena Dimensions CM 12.2 Build 7.199.0

CSRF Vulnerability in Serena Dimensions CM 12.2 Build 7.199.0

CVE-2014-0336 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

Cross-site request forgery (CSRF) vulnerability in the web client in Serena Dimensions CM 12.2 build 7.199.0 allows remote attackers to hijack the authentication of administrators for requests that use the user_new_master parameter to the adminconsole/ URI.

Learn more about our Web App Pen Testing.