3 matches found
CVE-2022-32555
Unisys Data Exchange Management Studio before 6.0.IC2 and 7.x before 7.0.IC1 doesn't have an Anti-CSRF token to authenticate the POST request. Thus, a cross-site request forgery attack could occur...
CVE-2022-32555
Unisys Data Exchange Management Studio before 6.0.IC2 and 7.x before 7.0.IC1 doesn't have an Anti-CSRF token to authenticate the POST request. Thus, a cross-site request forgery attack could occur...
CVE-2022-32555
Unisys Data Exchange Management Studio is affected by CVE-2022-32555 due to the absence of an Anti‑CSRF token on POST requests, enabling potential CSRF. Affected versions are prior to 6.0.IC2 and 7.x prior to 7.0.IC1. Root cause: missing Anti‑CSRF protection. Impact: cross‑site forgery could perf...