2 matches found
Security Bulletin: IBM MQ Appliance is vulnerable to cross-site request forgery (CVE-2022-31773)
Summary IBM MQ Appliance has resolved a cross-site request forgery vulnerability. Vulnerability Details CVEID:CVE-2022-31773 DESCRIPTION: IBM DataPower Gateway V10CD, 10.0.1, and 2018.4.1 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthoriz...
CVE-2022-31773
CVE-2022-31773 affects IBM DataPower Gateway V10CD, 10.0.1, and 2018.4.1, where a cross-site request forgery (CSRF) in the Web UI could let an attacker perform malicious, unauthorized actions on behalf of a trusted user. The root cause is CSRF in the web application that does not adequately valid...