Multiple cross-site request forgery (CSRF) vulnerabilities in Executer in RICOS in IBM Algo Credit Limits (aka ACLM) 4.5.0 through 4.7.0 before 4.7.0.03 FP5 in IBM Algorithmics allow remote attackers to hijack the authentication of arbitrary users for requests that change (1) a deal's currency or (2) a limit via a crafted XML document.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: ibm
Published: 2014-07-07T10:00:00
Updated: 2024-08-06T09:27:20.394Z
Reserved: 2014-01-06T00:00:00
Link: CVE-2014-0864
Vulnrichment
No data.
NVD
Status : Modified
Published: 2014-07-07T11:01:28.727
Modified: 2018-10-09T19:42:07.530
Link: CVE-2014-0864
Redhat
No data.