4 matches found
Security Bulletin: A cross-site request forgery vulnerability affects the IBM FlashSystem models 840 and 900 (CVE-2015-7446)
Summary There is a cross-site request forgery vulnerability to which the IBM® FlashSystem™ 840 and IBM FlashSystem 900 are susceptible. An exploit of this vulnerability could allow cross-site scripting attacks, Web cache poisoning, and other malicious activities. Vulnerability Details CVEID:...
Security Bulletin: : A cross-site request forgery vulnerability affects the IBM FlashSystem model V840 (CVE-2015-7446)
Summary There is a cross-site request forgery vulnerability to which the IBM® FlashSystem™ V840 is susceptible. An exploit of this vulnerability could allow cross-site scripting attacks, Web cache poisoning, and other malicious activities. Vulnerability Details CVEID: CVE-2015-7446 DESCRIPTION: I...
Security Bulletin: A cross-site request forgery vulnerability affects the IBM FlashSystem model V9000 (CVE-2015-7446)
Summary There is a cross-site request forgery vulnerability to which the IBM® FlashSystem™ V9000 is susceptible. An exploit of this vulnerability could allow cross-site scripting attacks, Web cache poisoning, and other malicious activities. Vulnerability Details CVEID: CVE-2015-7446 DESCRIPTION:...
CVE-2015-7446
CVE-2015-7446 affects IBM FlashSystem family (V9000 and V840) with CSRF due to improper input validation, enabling an attacker to cause XSS-like actions via authenticated user requests. Affected ranges include FlashSystem 840/9000 code lines across multiple MTMs (e.g., 9840/9843/9846/9848 series)...