The Planning Analytics Workspace component of IBM Planning Analytics is impacted by a Cross-Site Request Forgery (XSRF) vulnerability . This vulnerability has been addressed in IBM Planning Analytics Local v2.0 - Planning Analytics Workspace Release 48.
CVEID:CVE-2019-4613
**DESCRIPTION:**IBM Planning Analytics is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts.
CVSS Base score: 4.3
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/168524 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N)
IBM Planning Analytics 2.0
The recommended solution is to apply the fix as soon as practical.
None