Cross-Site Request Forgery Vulnerability in IBM DataPower Gateways 7.5-7.6

Cross-Site Request Forgery Vulnerability in IBM DataPower Gateways 7.5-7.6

CVE-2018-1661 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

IBM DataPower Gateways 7.5, 7.5.1, 7.5.2, and 7.6 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 144887.

Learn more about our Web App Pen Testing.