Security Bulletin: IBM QRadar SIEM is vulnerable to Cross Site Request Forgery. (CVE-2016-2878)

Summary Instances of Cross-Site Request Forgery have been found in IBM QRadar SIEM. Vulnerability Details CVE-ID: CVE-2016-2878 Description: IBM QRadar is vulnerable to cross-site request forgery, caused by improper validation of user-supplied input. By persuading an authenticated user to visit a...

CVE-2016-2878

Multiple cross-site request forgery CSRF vulnerabilities in IBM QRadar SIEM 7.1 before MR2 Patch 13 and 7.2 before 7.2.7 allow remote attackers to hijack the authentication of arbitrary users for requests that insert XSS sequences...

CVE-2016-2878

CVE-2016-2878 affects IBM QRadar SIEM (7.1 before MR2 Patch 13 and 7.2 before 7.2.7). The vulnerability is described as cross-site request forgery (CSRF) due to improper validation, allowing an attacker to hijack authentication for requests that can inject XSS sequences. The in-range impact inclu...

CVE-2016-2878

Multiple cross-site request forgery CSRF vulnerabilities in IBM QRadar SIEM 7.1 before MR2 Patch 13 and 7.2 before 7.2.7 allow remote attackers to hijack the authentication of arbitrary users for requests that insert XSS sequences...