Cross-Site Request Forgery in IBM Security Guardium Insights
CVE-2020-4170
4.3MEDIUM
Summary
IBM Security Guardium Insights 2.0.1 contains a vulnerability that exposes the application to cross-site request forgery (CSRF). This security flaw could enable an attacker to perform unauthorized actions on behalf of a trusted user. By exploiting this vulnerability, an attacker can potentially manipulate sensitive operations or data without the legitimate user's consent, making it essential for users of this product to implement protective measures promptly.
Affected Version(s)
Security Guardium Insights 2.0.1
References
CVSS V3.1
Score:
4.3
Severity:
MEDIUM
Confidentiality:
None
Integrity:
Low
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved