Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site request forgery (CSRF) vulnerability in the RES Console in Rule Execution Server in IBM Operational Decision Manager 7.5 before FP3 IF37, 8.0 before MP1 FP2, and 8.5 before MP1 IF26 allows remote authenticated users to hijack the authentication of arbitrary users for requests that insert XSS sequences.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Operational Decision Manager 跨站请求伪造漏洞
Vulnerability Description
IBM Operational Decision Manager是美国IBM公司的一套运营决策管理软件。该软件集成了业务事件和业务规则,能够在流程和应用之间自动执行和监管重复性决策。 IBM Operational Decision Manager 7.5,8.0及8.5版本的Rule Execution Server中的RES Console存在跨站请求伪造漏洞。远程攻击者可通过发送畸形的HTTP请求利用该漏洞实施跨站脚本攻击,执行恶意的操作。
CVSS Information
N/A
Vulnerability Type
N/A