cbcvebase.
CVE-2018-2001
published 2019-05-07

CVE-2018-2001: IBM Cram Social Program Management 6.1.1, 6.2.0, 7.0.4, and 7.0.5 is vulnerable to cross-site request forgery which could allow an attacker to execute…

high8.8CVSS 3.0
AVNACLPRNUIRSUCHIHAH
IBM Cram Social Program Management 6.1.1, 6.2.0, 7.0.4, and 7.0.5 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 154891.

Affected

8 ranges
VendorProductVersion rangeFixed in
ibmcram_social_program_management
ibmcram_social_program_management
ibmcram_social_program_management
ibmcram_social_program_management
ibmcuram_social_program_management
ibmcuram_social_program_management6.1.0.0 – 6.1.1.6
ibmcuram_social_program_management6.2.0.0 – 6.2.0.6
ibmcuram_social_program_management7.0.0.0 – 7.0.4.0