Cross-site request forgery (CSRF) vulnerability in IBM Security AppScan Enterprise 5.6 and 8.x prior to 8.7 and IBM Rational Policy Tester 5.6 and 8.x prior to 8.5.0.4 allows remote malicious users to hijack the authentication of arbitrary users for requests that cause a denial of service via malformed HTTP data.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm security appscan 5.6.0.0 |
||
ibm security appscan 8.5.0.1 |
||
ibm security appscan 8.6.0.0 |
||
ibm security appscan 8.0.0.2 |
||
ibm security appscan 8.0.1.0 |
||
ibm security appscan 8.0.1.1 |
||
ibm security appscan 8.0.11 |
||
ibm security appscan 8.5.0.0 |
||
ibm security appscan 8.0.0.0 |
||
ibm security appscan 8.0.0.1 |
||
ibm security appscan 8.6.0.1 |
||
ibm security appscan 8.6.0.2 |
||
ibm rational policy tester 8.0.1.1 |
||
ibm rational policy tester 8.0.1.0 |
||
ibm rational policy tester 5.6.0.0 |
||
ibm rational policy tester 8.0.0.0 |
||
ibm rational policy tester 8.5.0.2 |
||
ibm rational policy tester 8.5.0.3 |
||
ibm rational policy tester 8.5.0.0 |
||
ibm rational policy tester 8.5.0.1 |
||
ibm rational policy tester 8.0.0.2 |
||
ibm rational policy tester 8.0.0.1 |