CVE-2024-27265
CVSS 3.1 Score 6.5 of 10 (medium)
Details
Published Mar 14, 2024
Updated: Mar 19, 2024
CWE ID 352
Summary
CVE-2024-27265 is a cross-site request forgery (CSRF) vulnerability affecting IBM Integration Bus for z/OS versions 10.1 through 10.1.0.3. An attacker exploiting this weakness can trick a user into executing unauthorized actions on the trusted website. This could potentially lead to data theft or system manipulation. IBM X-Force has assigned ID 284564 to this issue.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- IBM Integration Bus
Affected Vendors
- IBM Corporation