Cross-Site Request Forgery in IBM Security Guardium Insights
CVE-2020-4170

4.3MEDIUM

Key Information:

Vendor
IBM
Vendor
CVE Published:
24 August 2020

Summary

IBM Security Guardium Insights 2.0.1 contains a vulnerability that exposes the application to cross-site request forgery (CSRF). This security flaw could enable an attacker to perform unauthorized actions on behalf of a trusted user. By exploiting this vulnerability, an attacker can potentially manipulate sensitive operations or data without the legitimate user's consent, making it essential for users of this product to implement protective measures promptly.

Affected Version(s)

Security Guardium Insights 2.0.1

References

CVSS V3.1

Score:
4.3
Severity:
MEDIUM
Confidentiality:
None
Integrity:
Low
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.