CVE-2024-27265

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Mar 14, 2024
Updated: Mar 19, 2024
CWE ID 352

Summary

CVE-2024-27265 is a cross-site request forgery (CSRF) vulnerability affecting IBM Integration Bus for z/OS versions 10.1 through 10.1.0.3. An attacker exploiting this weakness can trick a user into executing unauthorized actions on the trusted website. This could potentially lead to data theft or system manipulation. IBM X-Force has assigned ID 284564 to this issue.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • IBM Integration Bus

Affected Vendors

  • IBM Corporation