VYPR
Unrated severityNVD Advisory· Published Mar 29, 2013· Updated Jun 16, 2026

CVE-2013-0452

CVE-2013-0452

Description

Cross-site request forgery (CSRF) vulnerability in the Software Use Analysis (SUA) application before 1.3.3 in IBM Tivoli Endpoint Manager 8.2 allows remote attackers to hijack the authentication of arbitrary users via a web site that contains crafted Flash Action Message Format (AMF) messages.

Affected products

3
  • cpe:2.3:a:ibm:software_use_analysis:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:ibm:software_use_analysis:*:*:*:*:*:*:*:*range: <=1.3.2
    • (no CPE)range: <1.3.3
  • cpe:2.3:a:ibm:tivoli_endpoint_manager:8.2:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.