NVD

Id
36570  
Name
CVE-2013-0214  
Description
Cross-site request forgery (CSRF) vulnerability in the Samba Web Administration Tool (SWAT) in Samba 3.x before 3.5.21, 3.6.x before 3.6.12, and 4.x before 4.0.2 allows remote attackers to hijack the authentication of arbitrary users by leveraging knowledge of a password and composing requests that perform SWAT actions.  
Reject
 
CVSS Version
2  
CVSS Score
5.1  
Severity
Medium  
CVSS Base Score
5.1  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
4.9  
CVSS Vector
(AV:N/AC:H/Au:N/C:P/I:P/A:P)  
Pub Date
2017-01-18  
Published
2013-02-02  
Modified Date
2016-12-02  
Seq
2013-0214  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
186821 36570 CVE-2013-0214 SUSE-SU-2013:0326  View
186822 36570 CVE-2013-0214 SUSE-SU-2013:0519  View
186823 36570 CVE-2013-0214 openSUSE-SU-2013:0277  View
186824 36570 CVE-2013-0214 openSUSE-SU-2013:0281  View
186825 36570 CVE-2013-0214 RHSA-2013:1310  View
186826 36570 CVE-2013-0214 RHSA-2013:1542  View
186827 36570 CVE-2013-0214 RHSA-2014:0305  View
186828 36570 CVE-2013-0214 DSA-2617  View
186829 36570 CVE-2013-0214 http://www.samba.org/samba/security/CVE-2013-0214  View
186830 36570 CVE-2013-0214 57631  View
186831 36570 CVE-2013-0214 USN-2922-1  View
186832 36570 CVE-2013-0214 https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05115993  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
19829 JVNDB-2013-001404 Samba Web Administration Tool におけるクロスサイトリクエストフォージェリの脆弱性 Samba Web Administration Tool (SWAT) には、クロスサイトリクエストフォージェリの脆弱性が存在します。 CVE-2013-0214 60156 CVE-2013-0214 36570 5.1 http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-001404.html 2013-02-02 2015-03-24 View