ID CVE-2017-1769Type cveReporter NVDModified 2018-02-08T11:22:31
Description
IBM Business Process Manager 8.6 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 136783.
{"history": [{"lastseen": "2018-01-26T11:33:26", "bulletin": {"history": [], "description": "IBM Business Process Manager 8.6 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 136783.", "scanner": [], "reporter": "NVD", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-1769", "type": "cve", "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "scanner"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "reporter"}, {"hash": "f751ea47bd21fcf9a27ead9e458bfcb0", "key": "cvelist"}, {"hash": "0e7beb9e094e764bce1e150255084a45", "key": "published"}, {"hash": "1baa3e7997701dc5ffefbe1ff4c2df98", "key": "title"}, {"hash": "0ef0059e1b5ea454873be30d5a4b3083", "key": "href"}, {"hash": "6d3f4796275bb54c21a33b82f399cc6d", "key": "assessment"}, {"hash": "c85fc880b4484bb3a5678cf52ec3c3b2", "key": "description"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "cf09f89245c762d03cc86bbf3ef96cb5", "key": "references"}, {"hash": "565d2370d38733fe7f4a344fedd68498", "key": "modified"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}], "viewCount": 0, "assessment": {"system": "", "name": "", "href": ""}, "lastseen": "2018-01-26T11:33:26", "references": ["http://www.securityfocus.com/bid/102777", "https://exchange.xforce.ibmcloud.com/vulnerabilities/136783", "http://www.ibm.com/support/docview.wss?uid=swg22011579"], "published": "2018-01-24T09:29:00", "objectVersion": "1.3", "cvelist": ["CVE-2017-1769"], "cpe": [], "id": "CVE-2017-1769", "hash": "ebdb48eb4dffeb0a88a14fadff28597b54a1ce8c22d2dd8f59297cec46425aa3", "modified": "2018-01-25T21:29:02", "title": "CVE-2017-1769", "edition": 2, "cvss": {"score": 0.0, "vector": "NONE"}, "bulletinFamily": "NVD", "enchantments": {"score": {"value": 6.8, "modified": "2018-01-26T11:33:26"}}}, "edition": 2, "differentElements": ["references", "modified"]}, {"lastseen": "2018-02-01T11:35:23", "bulletin": {"history": [], "description": "IBM Business Process Manager 8.6 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 136783.", "scanner": [], "reporter": "NVD", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-1769", "type": "cve", "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "scanner"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "reporter"}, {"hash": "f751ea47bd21fcf9a27ead9e458bfcb0", "key": "cvelist"}, {"hash": "0e7beb9e094e764bce1e150255084a45", "key": "published"}, {"hash": "1baa3e7997701dc5ffefbe1ff4c2df98", "key": "title"}, {"hash": "d79e39e2f035a3cd7170be9a379b4bb8", "key": "modified"}, {"hash": "0ef0059e1b5ea454873be30d5a4b3083", "key": "href"}, {"hash": "6d3f4796275bb54c21a33b82f399cc6d", "key": "assessment"}, {"hash": "c85fc880b4484bb3a5678cf52ec3c3b2", "key": "description"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "9268efa293e892879cd88fc22bb749eb", "key": "references"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}], "viewCount": 0, "assessment": {"system": "", "name": "", "href": ""}, "lastseen": "2018-02-01T11:35:23", "references": ["http://www.securityfocus.com/bid/102777", "https://exchange.xforce.ibmcloud.com/vulnerabilities/136783", "http://www.securitytracker.com/id/1040298", "http://www.ibm.com/support/docview.wss?uid=swg22011579"], "published": "2018-01-24T09:29:00", "objectVersion": "1.3", "cvelist": ["CVE-2017-1769"], "cpe": [], "id": "CVE-2017-1769", "hash": "c06fc90435745e86f459133c8067b06c52f2a4294c6abd93f9bd680489cb2605", "modified": "2018-01-31T21:29:01", "title": "CVE-2017-1769", "edition": 3, "cvss": {"score": 0.0, "vector": "NONE"}, "bulletinFamily": "NVD", "enchantments": {"score": {"value": 6.8, "modified": "2018-02-01T11:35:23"}}}, "edition": 3, "differentElements": ["cvss", "modified", "cpe"]}, {"lastseen": "2018-01-25T11:32:54", "bulletin": {"history": [], "description": "IBM Business Process Manager 8.6 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 136783.", "scanner": [], "reporter": "NVD", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-1769", "type": "cve", "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "scanner"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "reporter"}, {"hash": "f751ea47bd21fcf9a27ead9e458bfcb0", "key": "cvelist"}, {"hash": "0e7beb9e094e764bce1e150255084a45", "key": "published"}, {"hash": "1baa3e7997701dc5ffefbe1ff4c2df98", "key": "title"}, {"hash": "0ef0059e1b5ea454873be30d5a4b3083", "key": "href"}, {"hash": "6d3f4796275bb54c21a33b82f399cc6d", "key": "assessment"}, {"hash": "ce4c0cafd34e99d1b7892557927f307e", "key": "references"}, {"hash": "c85fc880b4484bb3a5678cf52ec3c3b2", "key": "description"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "0e7beb9e094e764bce1e150255084a45", "key": "modified"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}], "viewCount": 0, "assessment": {"system": "", "name": "", "href": ""}, "lastseen": "2018-01-25T11:32:54", "references": ["https://exchange.xforce.ibmcloud.com/vulnerabilities/136783", "http://www.ibm.com/support/docview.wss?uid=swg22011579"], "published": "2018-01-24T09:29:00", "objectVersion": "1.3", "cvelist": ["CVE-2017-1769"], "cpe": [], "id": "CVE-2017-1769", "hash": "11558bfa71d323c55315788bc1db05bf80f86fc45af455fcf7361372f5c4bedf", "modified": "2018-01-24T09:29:00", "title": "CVE-2017-1769", "edition": 1, "cvss": {"score": 0.0, "vector": "NONE"}, "bulletinFamily": "NVD", "enchantments": {"score": {"value": 6.8, "modified": "2018-01-25T11:32:54"}}}, "edition": 1, "differentElements": ["references", "modified"]}], "description": "IBM Business Process Manager 8.6 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 136783.", "scanner": [], "reporter": "NVD", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-1769", "type": "cve", "hashmap": [{"key": "assessment", "hash": "6d3f4796275bb54c21a33b82f399cc6d"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "f7ea9b4ef186801ff46dba5e96159109"}, {"key": "cvelist", "hash": "f751ea47bd21fcf9a27ead9e458bfcb0"}, {"key": "cvss", "hash": "737e2591b537c46d1ca7ce6f0cea5cb9"}, {"key": "description", "hash": "c85fc880b4484bb3a5678cf52ec3c3b2"}, {"key": "href", "hash": "0ef0059e1b5ea454873be30d5a4b3083"}, {"key": "modified", "hash": "eab2a2108535b2bbb222c120a334cf63"}, {"key": "published", "hash": "0e7beb9e094e764bce1e150255084a45"}, {"key": "references", "hash": "9268efa293e892879cd88fc22bb749eb"}, {"key": "reporter", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "scanner", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "title", "hash": "1baa3e7997701dc5ffefbe1ff4c2df98"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "viewCount": 0, "assessment": {"system": "", "name": "", "href": ""}, "references": ["http://www.securityfocus.com/bid/102777", "https://exchange.xforce.ibmcloud.com/vulnerabilities/136783", "http://www.securitytracker.com/id/1040298", "http://www.ibm.com/support/docview.wss?uid=swg22011579"], "lastseen": "2018-02-09T11:41:52", "published": "2018-01-24T09:29:00", "objectVersion": "1.3", "cvelist": ["CVE-2017-1769"], "cpe": ["cpe:/a:ibm:business_process_manager:8.6.0.0"], "id": "CVE-2017-1769", "hash": "b50c41e60623c21174080366c6f976b9e4584cab97d978e5ec369365a25b54f5", "modified": "2018-02-08T11:22:31", "title": "CVE-2017-1769", "edition": 4, "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "bulletinFamily": "NVD", "enchantments": {"score": {"vector": "NONE", "value": 6.8}, "vulnersScore": 6.8}}
{}
