Multiple cross-site request forgery (CSRF) vulnerabilities in the (1) Data Stewardship, (2) Business Admin, and (3) Product interfaces in IBM InfoSphere Master Data Management (MDM) Server 8.5 prior to 8.5.0.82, 9.0.1 prior to 9.0.1.38, 9.0.2 prior to 9.0.2.35, 10.0 prior to 10.0.0.0.26, and 10.1 prior to 10.1.0.0.15 allow remote malicious users to hijack the authentication of arbitrary users.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm infosphere master data management server 8.5 |
||
ibm infosphere master data management server 10.1 |
||
ibm infosphere master data management server 9.0.2 |
||
ibm infosphere master data management server 9.0.1 |
||
ibm infosphere master data management server 10.0 |