Description
Cross-site request forgery (CSRF) vulnerability in the web interface in EMC RSA NetWitness Informer before 2.0.5.6 allows remote attackers to hijack the authentication of arbitrary users.
References (1)
Core 1
Core References
Third Party Advisory mailing-list
x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2012-12/0002.html
Scores
EPSS
0.0012
EPSS Percentile
30.8%
Details
CWE
CWE-352
Status
published
Products (1)
emc/rsa_netwitness_informer
< 2.0.5.5
Published
Dec 05, 2012
Tracked Since
Feb 18, 2026