First published: Sun Aug 17 2014(Updated: )
Cross-site request forgery (CSRF) vulnerability in the GDS component in IBM InfoSphere Master Data Management - Collaborative Edition 10.x and 11.x before 11.0-FP5 and InfoSphere Master Data Management Server for Product Information Management 9.x through 11.x before 11.3-IF2 allows remote authenticated users to hijack the authentication of arbitrary users.
Credit: psirt@us.ibm.com
Affected Software | Affected Version | How to fix |
---|---|---|
IBM InfoSphere Master Data Management | =10.0 | |
IBM InfoSphere Master Data Management | =10.1 | |
IBM InfoSphere Master Data Management | =11.0 | |
IBM InfoSphere Master Data Management | =11.3 | |
IBM InfoSphere Master Data Management Server for Product Information Management | =9.0 | |
IBM InfoSphere Master Data Management Server for Product Information Management | =9.1 | |
IBM InfoSphere Master Data Management Server for Product Information Management | =10.0 | |
IBM InfoSphere Master Data Management Server for Product Information Management | =10.0.0.1 | |
IBM InfoSphere Master Data Management Server for Product Information Management | =10.0.1 | |
IBM InfoSphere Master Data Management Server for Product Information Management | =10.1 | |
IBM InfoSphere Master Data Management Server for Product Information Management | =10.1.0.1 | |
IBM InfoSphere Master Data Management Server for Product Information Management | =10.1.0.2 | |
IBM InfoSphere Master Data Management Server for Product Information Management | =11.0 | |
IBM InfoSphere Master Data Management Server for Product Information Management | =11.3 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.