{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-02T05:43:32.415","vulnerabilities":[{"cve":{"id":"CVE-2016-2998","sourceIdentifier":"psirt@us.ibm.com","published":"2016-09-01T10:59:06.123","lastModified":"2026-05-06T22:30:45.220","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Cross-site request forgery (CSRF) vulnerability in IBM Connections 4.0 through CR4, 4.5 through CR5, 5.0 before CR4, and 5.5 before CR1 allows remote authenticated users to hijack the authentication of arbitrary users for requests that update data."},{"lang":"es","value":"Vulnerabilidad de CSRF en IBM Connections 4.0 hasta la versión CR4, 4.5 hasta la versión CR5, 5.0 en versiones anteriores a CR4 y 5.5 en versiones anteriores a CR1 permite a usuarios remotos autenticados secuestrar la autenticación de usuarios arbitrarios para peticiones que actualizan datos."}],"metrics":{"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N","baseScore":3.5,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.1,"impactScore":1.4}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:S/C:N/I:P/A:N","baseScore":3.5,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"SINGLE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"LOW","exploitabilityScore":6.8,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-352"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:connections:4.0.0.0:*:*:*:*:*:*:*","matchCriteriaId":"1786E8E0-3A05-4845-8184-BC980C8FDF53"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:connections:4.5.0.0:*:*:*:*:*:*:*","matchCriteriaId":"548B3376-1304-4289-A9A8-1B967C0425FC"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:connections:5.0.0.0:*:*:*:*:*:*:*","matchCriteriaId":"E36F2948-3B6C-4F31-A08C-C80E908FBF02"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:connections:5.5.0.0:*:*:*:*:*:*:*","matchCriteriaId":"B309632B-7039-4E34-8766-96ECF00D5F34"}]}]}],"references":[{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg1LO89929","source":"psirt@us.ibm.com","tags":["Not Applicable"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21988991","source":"psirt@us.ibm.com","tags":["Patch","Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/92578","source":"psirt@us.ibm.com"},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg1LO89929","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Not Applicable"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21988991","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/92578","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}