Vulnerabilities > IBM > Optim Workload Replay > 2.1.0.2
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2015-05-25 | CVE-2015-1895 | Permissions, Privileges, and Access Controls vulnerability in IBM Optim Workload Replay 2.1/2.1.0.1/2.1.0.2 IBM InfoSphere Optim Workload Replay 2.x before 2.1.0.3 relies on client-side code to verify authorization, which allows remote attackers to bypass intended access restrictions by modifying the client behavior. | 5.0 |
2015-05-25 | CVE-2015-1894 | Cross-Site Request Forgery (CSRF) vulnerability in IBM Optim Workload Replay 2.1/2.1.0.1/2.1.0.2 Cross-site request forgery (CSRF) vulnerability in IBM InfoSphere Optim Workload Replay 2.x before 2.1.0.3 allows remote attackers to hijack the authentication of arbitrary users for requests that insert XSS sequences. | 6.8 |