Lucene search
K

The vulnerability of the Werkzeug library for developing web applications, related to the manipulation of cross-site requests, allows attackers to gain access to confidential data, compromise its integrity, and cause service failures.

🗓️ 09 Apr 2025 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType 
bdu_fstec
 bdu_fstec
🔗 bdu.fstec.ru👁 5 Views

Werkzeug cross-site request manipulation vulnerability enables data leakage and service outages.

Related
Refs
ReporterTitlePublishedViews
Family
IBM Security Bulletins
Security Bulletin: IBM Security QRadar EDR Software contains multiple vulnerabilities
8 Jul 202409:49
ibm
IBM Security Bulletins
Security Bulletin: Vulnerability in Pallets Werkzeug affects IBM Process Mining CVE-2024-34069
28 Jun 202415:16
ibm
IBM Security Bulletins
Security Bulletin: IBM Cloud Pak for Data is vulnerable to to Cross-Site Request Forgery (CSRF) due to insecure debugger access in Werkzeug ( CVE-2024-34069)
16 Jun 202518:58
ibm
IBM Security Bulletins
Security Bulletin: Vulnerability Werkzeug, Twisted-22.10.0-py3, requests-2.32.2-py3, commons-lang-2.6, commons-fileupload-1.5, urllib3-2.2.2, jetty-server-9.4.56.v20240826 affect IBM Cloud Object Storage Systems (Oct 2025)
24 Oct 202515:45
ibm
IBM Security Bulletins
Security Bulletin: IBM Maximo Application Suite uses Werkzeug-2.2.3-py3-none-any.whl which is vulnerable to CVE-2024-4067.
13 Sep 202407:30
ibm
IBM Security Bulletins
Security Bulletin: IBM Concert Software is vulnerable to multiple issues
15 Apr 202503:14
ibm
IBM Security Bulletins
Security Bulletin: QRadar Suite Software includes components with multiple known vulnerabilities
4 Feb 202518:06
ibm
IBM Security Bulletins
Security Bulletin: IBM Maximo Application Suite - Monitor Component is vulnerable to Werkzeug-2.3.4-py3-none-any.whl CVE-2023-46136
10 Feb 202513:02
ibm
IBM Security Bulletins
Security Bulletin: IBM Storage Ceph is vulnerable to CSRF in Werkzeug (CVE-2024-34069)
29 Jul 202520:55
ibm
IBM Security Bulletins
Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in werkzeug
29 Aug 202418:58
ibm
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

06 May 2025 00:00Current
6.3Medium risk
Vulners AI Score6.3
CVSS 37.5
CVSS 27.6
EPSS0.03397
5