Cross-site request forgery (CSRF) vulnerability in the Software Use Analysis (SUA) application prior to 1.3.3 in IBM Tivoli Endpoint Manager 8.2 allows remote malicious users to hijack the authentication of arbitrary users via a web site that contains crafted Flash Action Message Format (AMF) messages.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm tivoli endpoint manager 8.2 |
||
ibm software use analysis |