Security Bulletin: IBM CloudPak for Data Scheduling Service is vulernable to CVE-2025-24358
Summary github.com/gorilla/csrf-v1.7.1 is used by the Scheduling Service. Vulnerability Details CVEID:CVE-2025-24358 DESCRIPTION: gorilla/csrf provides Cross Site Request Forgery CSRF prevention middleware for Go web applications & services. Prior to 1.7.2, gorilla/csrf does not validate the Orig...