CVE-2013-0489

IBM Lotus Domino 8.5.x - Authenticated Cross-Site Request Forgery in Web Administrator Client

Title source: llm
STIX 2.1

Description

Cross-site request forgery (CSRF) vulnerability in webadmin.nsf (aka the Web Administrator client) in IBM Domino 8.5.x allows remote authenticated users to hijack the authentication of administrators.

References (2)

Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/81854
Vendor Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21627597

Scores

EPSS 0.0047
EPSS Percentile 37.7%

Details

CWE
CWE-352
Status published
Products (16)
ibm/lotus_domino 8.5.0
ibm/lotus_domino 8.5.0.1
ibm/lotus_domino 8.5.1
ibm/lotus_domino 8.5.1.1
ibm/lotus_domino 8.5.1.2
ibm/lotus_domino 8.5.1.3
ibm/lotus_domino 8.5.1.4
ibm/lotus_domino 8.5.1.5
ibm/lotus_domino 8.5.2.0
ibm/lotus_domino 8.5.2.1
... and 6 more
Published Mar 27, 2013
Tracked Since Feb 18, 2026