PT-2009-1581 · Ibm · Ibm Workplace Web Content Management+1

Publicado

2009-02-10

Atualizado

2009-08-08

CVE-2008-6106

CVSS v2.0

6.8

Média

Vetor

AV:N/AC:M/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions IBM Workplace for Business Controls and Reporting versions 2.x IBM Workplace Web Content Management versions 6.x

Description A cross-site request forgery (CSRF) issue has been identified, allowing for remote attack vectors. The impact of this issue is currently unknown.

Recommendations For IBM Workplace for Business Controls and Reporting versions 2.x, update to a version that addresses this issue. For IBM Workplace Web Content Management versions 6.x, update to a version that addresses this issue. As a temporary workaround, consider implementing anti-CSRF measures, such as token-based validation, to mitigate the risk of exploitation.

Correção

CSRF

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-352

Identificadores relacionados

CVE-2008-6106

Produtos afetados

Ibm Workplace Web Content Management

Ibm Workplace For Business Controls/Reporting

PT-2009-1581 · Ibm · Ibm Workplace Web Content Management+1

CVE-2008-6106

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 4