Cross-site request forgery (CSRF) vulnerability in the web client in Serena Dimensions CM 12.2 build 7.199.0 allows remote attackers to hijack the authentication of administrators for requests that use the user_new_master parameter to the adminconsole/ URI.
References
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: certcc

Published: 2014-03-06T11:00:00

Updated: 2024-08-06T09:13:09.892Z

Reserved: 2013-12-05T00:00:00

Link: CVE-2014-0336

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2014-03-06T11:55:05.147

Modified: 2024-11-21T02:01:54.243

Link: CVE-2014-0336

cve-icon Redhat

No data.