Cross site request forgery (csrf)

2014-03-1614:06:00

PRIOn knowledge base

www.prio-n.com

7.7 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

40.0%

JSON

Multiple cross-site request forgery (CSRF) vulnerabilities in the (1) Data Stewardship, (2) Business Admin, and (3) Product interfaces in IBM InfoSphere Master Data Management (MDM) Server 8.5 before 8.5.0.82, 9.0.1 before 9.0.1.38, 9.0.2 before 9.0.2.35, 10.0 before 10.0.0.0.26, and 10.1 before 10.1.0.0.15 allow remote attackers to hijack the authentication of arbitrary users.

CPENameOperatorVersion
infosphere_master_data_management_servereq8.5
infosphere_master_data_management_servereq9.0.1
infosphere_master_data_management_servereq9.0.2
infosphere_master_data_management_servereq10.0
infosphere_master_data_management_servereq10.1

Name	Operator	Version
infosphere_master_data_management_server	eq	8.5
infosphere_master_data_management_server	eq	9.0.1
infosphere_master_data_management_server	eq	9.0.2
infosphere_master_data_management_server	eq	10.0
infosphere_master_data_management_server	eq	10.1