PT-2017-10296 · Ibm · Ibm Qradar Incident Forensics

Chris Shepherd

+6

·

Publicado

2017-03-07

·

Atualizado

2017-03-09

·

CVE-2016-9730

CVSS v2.0

4.3

Média

VetorAV:N/AC:M/Au:N/C:N/I:P/A:N
Name of the Vulnerable Software and Affected Versions IBM QRadar Incident Forensics version 7.2
Description The issue allows an attacker to execute malicious and unauthorized actions by exploiting cross-site request forgery. This could be done by transmitting actions from a user that the website trusts.
Recommendations For IBM QRadar Incident Forensics version 7.2, update to a version that includes the fix for the issue referenced by IBM Reference #: 1999549.

Correção

CSRF

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-352

Identificadores relacionados

CVE-2016-9730

Produtos afetados

Ibm Qradar Incident Forensics