Cross-Site Request Forgery in IBM InfoSphere Optim Workload Replay
CVE-2015-1894

Currently unrated

Key Information:

Vendor: IBM
Status: Optim Workload Replay
Vendor: CVE Published:; 25 May 2015

Summary

A Cross-Site Request Forgery (CSRF) vulnerability exists in IBM InfoSphere Optim Workload Replay 2.x prior to version 2.1.0.3. This security flaw allows remote attackers to potentially hijack the authentication of users, thereby permitting unauthorized requests that could insert malicious XSS sequences. Organizations using affected versions should prioritize upgrading to mitigate the risk of exploitation.

References

http://www.securityfocus.com/bid/74441

vdb-entryx_refsource_BID

http://www-01.ibm.com/support/docview.wss?uid=swg21700768

x_refsource_CONFIRM

Timeline

Vulnerability published
May 25, 2015
Vulnerability Reserved
Feb 19, 2015