exploitDog

GHSA-fxmj-6xv8-f3m7

Опубликовано: 26 фев. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 4.3

Описание

IBM Cognos Analytics 11.1.7, 11.2.4, and 12.0.0 is vulnerable to form action hijacking where it is possible to modify the form action to reference an arbitrary path. IBM X-Force ID: 255898.

IBM Cognos Analytics 11.1.7, 11.2.4, and 12.0.0 is vulnerable to form action hijacking where it is possible to modify the form action to reference an arbitrary path. IBM X-Force ID: 255898.

Ссылки

EPSS

Процентиль: 9%

0.00033

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-352

Связанные уязвимости

CVE-2023-32344

CVSS3: 4.3

nvd

почти 2 года назад

IBM Cognos Analytics 11.1.7, 11.2.4, and 12.0.0 is vulnerable to form action hijacking where it is possible to modify the form action to reference an arbitrary path. IBM X-Force ID: 255898.

EPSS

Процентиль: 9%

0.00033

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-352