CVE-2013-6365

moderate-risk
Published 2019-11-05

Horde Groupware Web mail 5.1.2 has CSRF with requests to change permissions

Do I need to act?

-
0.53% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
5
CVSS 5.3/10 Medium
NETWORK / HIGH complexity

Affected Products (6)

Affected Vendors

Debian Horde Opensuse

References (12)

Broken Link http://archives.neohapsis.com/archives/bugtraq/2013-11/0013.html
Exploit https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-6365
Issue Tracking https://bugzilla.suse.com/show_bug.cgi?id=CVE-2013-6365
Third Party Advisory https://packetstormsecurity.com/files/cve/CVE-2013-6365
Third Party Advisory https://security-tracker.debian.org/tracker/CVE-2013-6365
Exploit https://www.securityfocus.com/archive/1/529590
Broken Link http://archives.neohapsis.com/archives/bugtraq/2013-11/0013.html
Exploit https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-6365
Issue Tracking https://bugzilla.suse.com/show_bug.cgi?id=CVE-2013-6365
Third Party Advisory https://packetstormsecurity.com/files/cve/CVE-2013-6365
Third Party Advisory https://security-tracker.debian.org/tracker/CVE-2013-6365
Exploit https://www.securityfocus.com/archive/1/529590
32
/ 100
moderate-risk
Severity 17/34 · Moderate
Exploitability 2/34 · Minimal
Exposure 13/34 · Low