CVE-2022-32555

Unisys Data Exchange Management Studio before 6.0.IC2 and 7.x before 7.0.IC1 doesn't have an Anti-CSRF token to authenticate the POST request. Thus, a cross-site request forgery attack could occur.
Configurations

Configuration 1

cpe:2.3:a:unisys:data_exchange_management_studio:7.0:*:*:*:*:*:*:*
cpe:2.3:a:unisys:data_exchange_management_studio:6.0.ic1:*:*:*:*:*:*:*

Information

Published : 2022-09-13 08:15

Updated : 2022-09-17 12:18


NVD link : CVE-2022-32555

Mitre link : CVE-2022-32555

Products Affected
No products.
CWE