#VU77560 Cross-site request forgery in Db2U - CVE-2022-41297

Cybersecurity Help s.r.o.

Published: 2023-06-20

Vulnerability identifier: #VU77560

Vulnerability risk: Medium

CVSSv4.0: 4.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2022-41297

CWE-ID: CWE-352

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Db2U
Other software / Other software solutions

Vendor: IBM Corporation

Description

The vulnerability allows a remote attacker to perform cross-site request forgery attacks.

The vulnerability exists due to insufficient validation of the HTTP request origin. A remote attacker can trick the victim to visit a specially crafted web page and execute malicious and unauthorized actions transmitted from a user that the website trusts.

Mitigation
Cybersecurity Help is currently unaware of any official solution to address this vulnerability..

Vulnerable software versions

Db2U : 3.5 - 4.5

External links
https://exchange.xforce.ibmcloud.com/vulnerabilities/237212
https://www.ibm.com/support/pages/node/6843071

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in IBM Db2 on Cloud Pak for Data and Db2 Warehouse on Cloud Pak for Data