CVE-2010-2151

Fujitsu e-Pares V01 L01, L03, L10, L20, L30, and L40 - Cross-Site Request Forgery

Title source: llm
STIX 2.1

Description

Cross-site request forgery (CSRF) vulnerability in Fujitsu e-Pares V01 L01 V01 L01, L03, L10, L20, L30, and L40 allows remote attackers to hijack the authentication of users for requests that modify "facility reservation data" via unknown vectors.

References (5)

Core 5
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/40517
Third Party Advisory third-party-advisory x_refsource_jvn
http://jvn.jp/en/jp/JVN82465391/index.html
Third Party Advisory third-party-advisory x_refsource_jvndb
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-000022.html
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/40029

Scores

EPSS 0.0082
EPSS Percentile 53.1%

Details

CWE
CWE-352
Status published
Products (7)
fujitsu/e-pares l01
fujitsu/e-pares l03
fujitsu/e-pares l10
fujitsu/e-pares l20
fujitsu/e-pares l30
fujitsu/e-pares l40
fujitsu/e-pares v01
Published Jun 03, 2010
Tracked Since Feb 18, 2026