CVE-2018-18696

Name of the Vulnerable Software and Affected Versions Microstrategy Analytics versions prior to 10.4.0026.0049

Description The issue concerns a CSRF problem in the main.aspx file. The vendor has provided documentation for preventing CSRF attacks, but there is a disagreement on whether this issue constitutes a vulnerability. No information is available on the estimated number of potentially affected devices or real-world incidents where this issue was exploited.

Recommendations For versions prior to 10.4.0026.0049, consider implementing the CSRF prevention measures as described in the vendor-provided documentation to minimize the risk of exploitation. As a temporary workaround, restrict access to the main.aspx file until the issue is resolved.