CVE-2010-2151
Published Jun 3, 2010
Last updated 14 years ago
Overview
- Description
- Cross-site request forgery (CSRF) vulnerability in Fujitsu e-Pares V01 L01 V01 L01, L03, L10, L20, L30, and L40 allows remote attackers to hijack the authentication of users for requests that modify "facility reservation data" via unknown vectors.
- Source
- cve@mitre.org
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 2.6
- Impact score
- 2.9
- Exploitability score
- 4.9
- Vector string
- AV:N/AC:H/Au:N/C:N/I:P/A:N
Weaknesses
- nvd@nist.gov
- CWE-352
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:fujitsu:e-pares:l01:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1C727445-B1D6-4897-AE68-97CDEE600CD0"
},
{
"criteria": "cpe:2.3:a:fujitsu:e-pares:l03:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "12595480-F60B-46D8-9056-C0BB54C93415"
},
{
"criteria": "cpe:2.3:a:fujitsu:e-pares:l10:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "838ABD2B-5CC3-4F47-BDF0-C89496CA9AE6"
},
{
"criteria": "cpe:2.3:a:fujitsu:e-pares:l20:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4F291B73-8B0E-4C04-A805-29657F7353AC"
},
{
"criteria": "cpe:2.3:a:fujitsu:e-pares:l30:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5542EF81-6058-4FDA-9C4E-B572E451ECB7"
},
{
"criteria": "cpe:2.3:a:fujitsu:e-pares:l40:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "99E8DFD0-924C-4906-8A23-EAE2A7A40E45"
},
{
"criteria": "cpe:2.3:a:fujitsu:e-pares:v01:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "85390E28-C3F5-454B-9106-9E7BCB862538"
}
],
"operator": "OR"
}
]
}
]