Cross site request forgery (csrf)

2018-04-2715:29:00

PRIOn knowledge base

www.prio-n.com

8.1 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

30.8%

JSON

IBM BigFix Platform 9.2 and 9.5 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 140761.

CPENameOperatorVersion
bigfix_platformge9.2
bigfix_platformle9.2.13
bigfix_platformge9.5
bigfix_platformle9.5.8

Name	Operator	Version
bigfix_platform	ge	9.2
bigfix_platform	le	9.2.13
bigfix_platform	ge	9.5
bigfix_platform	le	9.5.8

References

www.ibm.com/support/docview.wss?uid=swg22015754

exchange.xforce.ibmcloud.com/vulnerabilities/140761