CVE-2016-3029: IBM Security Access Manager for Web is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions…

high8.8CVSS 3.0

AVNACLPRNUIRSUCHIHAH

IBM Security Access Manager for Web is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts.

Affected

35 ranges· showing 25

Vendor	Product	Version range	Fixed in
ibm	security_access_manager_9.0_firmware	—	—
ibm	security_access_manager_9.0_firmware	—	—
ibm	security_access_manager_9.0_firmware	—	—
ibm	security_access_manager_for_mobile_8.0_firmware	—	—
ibm	security_access_manager_for_mobile_8.0_firmware	—	—
ibm	security_access_manager_for_mobile_8.0_firmware	—	—
ibm	security_access_manager_for_mobile_8.0_firmware	—	—
ibm	security_access_manager_for_mobile_8.0_firmware	—	—
ibm	security_access_manager_for_mobile_8.0_firmware	—	—
ibm	security_access_manager_for_mobile_8.0_firmware	—	—
ibm	security_access_manager_for_mobile_8.0_firmware	—	—
ibm	security_access_manager_for_web_8.0_firmware	—	—
ibm	security_access_manager_for_web_8.0_firmware	—	—
ibm	security_access_manager_for_web_8.0_firmware	—	—
ibm	security_access_manager_for_web_8.0_firmware	—	—
ibm	security_access_manager_for_web_8.0_firmware	—	—
ibm	security_access_manager_for_web_8.0_firmware	—	—
ibm	security_access_manager_for_web_8.0_firmware	—	—
ibm	security_access_manager_for_web_8.0_firmware	—	—
ibm_corporation	access_manager	—	—
ibm_corporation	access_manager	—	—
ibm_corporation	access_manager	—	—
ibm_corporation	access_manager	—	—
ibm_corporation	access_manager	—	—
ibm_corporation	access_manager	—	—