Cross-Site Request Forgery in IBM Security QRadar Vulnerability Manager
CVE-2015-1997

Currently unrated

Key Information:

Vendor: IBM
Status: Security Qradar Incident Forensics
Vendor: CVE Published:; 8 November 2015

What is CVE-2015-1997?

The vulnerability allows remote attackers to hijack the authentication of arbitrary users by sending crafted requests that can insert malicious XSS sequences. This exploitation enables unauthorized access and manipulation of the application, posing significant risks to user data and integrity.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21970140

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 8, 2015
Vulnerability Reserved
Feb 19, 2015