HP Operations Orchestration CVE-2013-6192 Unspecified Cross Site Request Forgery Vulnerability

HP Operations Orchestration is prone to an unspecified cross-site request-forgery vulnerability.

Exploiting this issue may allow a remote attacker to perform certain actions in the context of an authorized user's session and gain unauthorized access to the affected application; other attacks are also possible.

NOTE: Limited information is currently available regarding this issue. We will update this BID as more information emerges.

Versions prior to HP Operations Orchestration 9 are vulnerable.


Privacy Statement
Copyright 2010, SecurityFocus