CVE-2024-27265

Name of the Vulnerable Software and Affected Versions IBM Integration Bus for z/OS versions 10.1 through 10.1.0.3

Description The issue is related to cross-site request forgery, which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts.

Recommendations For IBM Integration Bus for z/OS versions 10.1 through 10.1.0.3, consider disabling any functionality that may be susceptible to cross-site request forgery until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.