CSRF Vulnerability in IBM InfoSphere Information Server Metadata Workbench
CVE-2014-0933

Currently unrated

Key Information:

Vendor: IBM
Status: Infosphere Information Server Metadata Workbench
Vendor: CVE Published:; 16 May 2014

What is CVE-2014-0933?

A cross-site request forgery (CSRF) vulnerability exists in IBM InfoSphere Information Server Metadata Workbench versions 8.1 to 9.1, allowing remote attackers to execute unauthorized commands on behalf of authenticated users. Exploiting this vulnerability can lead to session hijacking and manipulation of user actions without their consent, compromising the confidentiality and integrity of the affected systems. Users are advised to implement necessary security measures to mitigate the risks associated with this vulnerability.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/92273

vdb-entryx_refsource_XF

http://www-01.ibm.com/support/docview.wss?uid=swg21671141

x_refsource_CONFIRM

http://www-01.ibm.com/support/docview.wss?uid=swg1JR49605

vendor-advisoryx_refsource_AIXAPAR

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 16, 2014
Vulnerability Reserved
Jan 6, 2014