Red Hat · Cloudforms Management Engine · CVE-2013-6443
**Name of the Vulnerable Software and Affected Versions**
CloudForms Management Engine versions prior to 5.2.1.6
**Description**
The issue allows remote attackers to bypass the Ruby on Rails protect from forgery mechanism and conduct cross-site request forgery (CSRF) attacks via a destructive action in a request.
**Recommendations**
For versions prior to 5.2.1.6, update to version 5.2.1.6 or later to resolve the issue.