CVE-2014-6106
published 2017-09-18CVE-2014-6106: Cross-site request forgery (CSRF) vulnerability in IBM Security Identity Manager 5.1, 6.0, and 7.0 allows remote attackers to hijack the authentication of…
high8.8CVSS 3.0
AVNACLPRNUIRSUCHIHAH
Cross-site request forgery (CSRF) vulnerability in IBM Security Identity Manager 5.1, 6.0, and 7.0 allows remote attackers to hijack the authentication of users for requests that can cause cross-site scripting attacks, web cache poisoning, or other unspecified impacts via unknown vectors.
Affected
20 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | security_identity_manager | — | — |
| ibm | security_identity_manager | — | — |
| ibm | security_identity_manager | — | — |
| ibm | security_identity_manager | — | — |
| ibm | security_identity_manager | — | — |
| ibm | security_identity_manager | — | — |
| ibm | security_identity_manager | — | — |
| ibm | security_identity_manager | — | — |
| ibm | security_identity_manager | — | — |
| ibm | security_identity_manager | — | — |
| ibm | security_identity_manager | — | — |
| ibm | security_identity_manager | — | — |
| ibm | security_identity_manager | — | — |
| ibm | security_identity_manager | — | — |
| ibm | security_identity_manager | — | — |
| ibm | security_identity_manager | — | — |
| ibm | security_identity_manager | — | — |
| ibm | security_identity_manager | — | — |
| ibm | security_identity_manager | — | — |
| ibm | security_identity_manager | — | — |