CVE-2018-6496

high

Description

Remote Cross-site Request forgery (CSRF) potential has been identified in UCMBD Browser version 4.10, 4.11, 4.12, 4.13, 4.14, 4.15, 4.15.1 which could allow for remote unsafe deserialization and cross-site request forgery (CSRF).

References

https://softwaresupport.softwaregrp.com/document/-/facetsearch/document/KM03180066

http://www.securitytracker.com/id/1041139

http://www.securityfocus.com/bid/104483

Details

Source: Mitre, NVD

Published: 2018-06-16

Updated: 2023-11-07

Risk Information

CVSS v2

Base Score: 6.8

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P

Severity: Medium

CVSS v3

Base Score: 8.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Severity: High

Detections

Analytics