CVE-2012-2734

Description

Multiple cross-site request forgery (CSRF) vulnerabilities in Cumin before 0.1.5444, as used in Red Hat Enterprise Messaging, Realtime, and Grid (MRG) 2.0, allow remote attackers to hijack the authentication of arbitrary users for requests that execute commands via unspecified vectors.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/78775

http://www.securityfocus.com/bid/55618

http://secunia.com/advisories/50660

http://rhn.redhat.com/errata/RHSA-2012-1281.html

http://rhn.redhat.com/errata/RHSA-2012-1278.html

Details

Source: Mitre, NVD

Risk Information

CVSS v2

CVSS v3