Lucene search
China National Vulnerability DatabaseCNVD-2024-14666HistoryMar 18, 2024 - 12:00 a.m.
IBM Integration Bus for z/OS Cross-Site Request Forgery Vulnerability
2024-03-1800:00:00
China National Vulnerability Database
www.cnvd.org.cn
5
ibm
integration bus
z/os
cross-site request forgery
vulnerability
exploited
unauthorized actions
soa environments
non-soa environments
cnvd
IBM Integration Bus (IBM WebSphere Message Broker) is an enterprise service bus (ESB) product from International Business Machines (IBM). The product provides connectivity and common data transformation for Service Oriented Architecture (SOA) environments and non-SOA environments. A cross-site request forgery vulnerability exists in IBM Integration Bus for z/OS, which can be exploited by an attacker to perform malicious and unauthorized actions transmitted from a user trusted by the site.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ibm integration bus for z/os >=10.1,<=10. | eq | 1.0.3 |
Related
cvelist
cvelist
CVE-2024-27265 IBM Integration Bus for z/OS cross-site request forgery
2024-03-14 18:37:33
ibm
ibm
cve
cve
CVE-2024-27265
2024-03-14 19:15:50
nvd
nvd
CVE-2024-27265
2024-03-14 19:15:50