CVE-2020-4942: CSRF
First published: Mon Jan 04 2021(Updated: )
IBM Curam Social Program Management 7.0.9 and 7.0.11 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 191942.
Credit: psirt@us.ibm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IBM Curam Social Program Management | =7.0.9.0 | |
| IBM Curam Social Program Management | =7.0.11.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this IBM Curam Social Program Management vulnerability?
The vulnerability ID is CVE-2020-4942.
What is the severity level of CVE-2020-4942?
The severity level of CVE-2020-4942 is high, with a severity value of 8.8.
What is the affected software for CVE-2020-4942?
The affected software for CVE-2020-4942 is IBM Curam Social Program Management versions 7.0.9 and 7.0.11.
What is the vulnerability description of CVE-2020-4942?
CVE-2020-4942 is a vulnerability in IBM Curam Social Program Management that allows cross-site request forgery, enabling attackers to execute malicious actions on the website.
Are there any references or additional information available for CVE-2020-4942?
Yes, you can find more information about CVE-2020-4942 at the IBM X-Force ID: 191942 and on the IBM support page.
- collector/nvd-index
- agent/references
- agent/weakness
- agent/severity
- agent/author
- agent/type
- agent/description
- agent/event
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/ibm
- canonical/ibm curam social program management
- version/ibm curam social program management/7.0.9.0
- version/ibm curam social program management/7.0.11.0