Cross-Site Request Forgery in IBM WebSphere eXtreme Scale
CVE-2015-2026

Currently unrated

Key Information:

Vendor
IBM
Vendor
CVE Published:
4 October 2015

Summary

A CSRF vulnerability exists in IBM WebSphere eXtreme Scale versions 7.1.0 prior to 7.1.0.3 and 7.1.1 prior to 7.1.1.1. This flaw enables remote authenticated users to execute unauthorized actions by hijacking the authentication tokens of other users, potentially leading to the insertion of malicious XSS sequences within requests.

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.