VYPR
Get started
← All advisories
High severity8.0NVD Advisory· Published Jul 2, 2016· Updated May 6, 2026

CVE-2016-0386

CVE-2016-0386

Description

Cross-site request forgery (CSRF) vulnerability in IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4 before 3.4.2.4, and 3.5 before 3.5.0.2 allows remote authenticated users to hijack the authentication of administrators for requests that delete employees.

Affected products

22
  • IBM/Tririga Application Platform22 versions
    cpe:2.3:a:ibm:tririga_application_platform:3.3.0.0:*:*:*:*:*:*:*+ 21 more
    • cpe:2.3:a:ibm:tririga_application_platform:3.3.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:tririga_application_platform:3.3.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:tririga_application_platform:3.3.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:tririga_application_platform:3.3.1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:tririga_application_platform:3.3.1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:tririga_application_platform:3.3.1.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:tririga_application_platform:3.3.1.3:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:tririga_application_platform:3.3.2.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:tririga_application_platform:3.3.2.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:tririga_application_platform:3.3.2.3:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:tririga_application_platform:3.3.2.4:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:tririga_application_platform:3.3.2.5:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:tririga_application_platform:3.4.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:tririga_application_platform:3.4.1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:tririga_application_platform:3.4.1.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:tririga_application_platform:3.4.1.3:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:tririga_application_platform:3.4.2.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:tririga_application_platform:3.4.2.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:tririga_application_platform:3.4.2.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:tririga_application_platform:3.4.2.3:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:tririga_application_platform:3.5.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:tririga_application_platform:3.5.0.1:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

News mentions

0

No linked articles in our index yet.