Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site request forgery (CSRF) vulnerability in IBM Security AppScan Enterprise 5.6 and 8.x before 8.7 and IBM Rational Policy Tester 5.6 and 8.x before 8.5.0.4 allows remote attackers to hijack the authentication of arbitrary users for requests that cause a denial of service via malformed HTTP data.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
多款IBM产品跨站请求伪造漏洞
Vulnerability Description
IBM Rational Policy Tester(RPT)是美国IBM公司的一套自动化的在线遵从性解决方案。该解决方案主要用于测试Web应用访问质量、隐私和无障碍性遵循结果等遵从性问题。 IBM Security AppScan Enterprise 5.6和8.7之前的8.x版本;IBM Rational Policy Tester 5.6和8.5.0.4之前的8.x版本中存在跨站请求伪造漏洞。通过畸形的HTTP数据,远程攻击者利用该漏洞劫持任意用户请求的身份认证,导致拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A