Lucene search
IbmCVE-2015-1894HistoryMay 25, 2015 - 12:59 a.m.
CVE-2015-1894
2015-05-2500:59:03
CWE-352
ibm
web.nvd.nist.gov
25
cve-2015-1894
csrf
ibm infosphere
optim workload replay
xss
nvd
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
6.6
Confidence
High
EPSS
0.001
Percentile
43.1%
Cross-site request forgery (CSRF) vulnerability in IBM InfoSphere Optim Workload Replay 2.x before 2.1.0.3 allows remote attackers to hijack the authentication of arbitrary users for requests that insert XSS sequences.
Affected configurations
Node
ibmoptim_workload_replayMatch2.1
ORibmoptim_workload_replayMatch2.1.0.1
ORibmoptim_workload_replayMatch2.1.0.2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ibm | optim_workload_replay | 2.1 | cpe:2.3:a:ibm:optim_workload_replay:2.1:*:*:*:*:*:*:* |
| ibm | optim_workload_replay | 2.1.0.1 | cpe:2.3:a:ibm:optim_workload_replay:2.1.0.1:*:*:*:*:*:*:* |
| ibm | optim_workload_replay | 2.1.0.2 | cpe:2.3:a:ibm:optim_workload_replay:2.1.0.2:*:*:*:*:*:*:* |
Related
prion
prion
Cross site request forgery (csrf)
2015-05-25 00:59:00
cvelist
cvelist
CVE-2015-1894
2015-05-25 00:00:00
nvd
nvd
CVE-2015-1894
2015-05-25 00:59:03
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
6.6
Confidence
High
EPSS
0.001
Percentile
43.1%
Related for CVE-2015-1894