CVE-2017-1672
Description
IBM Tivoli Key Lifecycle Manager 2.6 and 2.7 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 133639.
- CVSS Version 3.0
- CVSS Version 2.0
nvd
CVE ID: CVE-2017-1672
Base Score: 8.8
Base Severity: HIGH
Vector String:CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvd
CVE ID: CVE-2017-1672
Base Score: 6.8
Base Severity: MEDIUM
Vector String:AV:N/AC:M/Au:N/C:P/I:P/A:P
Content on GitHub
CN016 | watchers:1
WebAccess-CVE-2017-16720-
WebAccess远程命令执行漏洞(CVE-2017-16720)复现
Refrence: GitHub
Refrence: NVD