Vulnerabilities > IBM > Storediq > 7.6.0.8
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-08-20 | CVE-2019-4167 | Cross-Site Request Forgery (CSRF) vulnerability in IBM Storediq IBM StoredIQ 7.6.0 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. | 6.5 |
| 2019-07-31 | CVE-2019-4165 | Unspecified vulnerability in IBM Storediq IBM StoreIQ 7.6.0.0. | 7.5 |
| 2019-07-31 | CVE-2019-4163 | Unspecified vulnerability in IBM Storediq IBM StoreIQ 7.6.0.0. | 4.3 |
| 2019-04-30 | CVE-2019-4166 | Open Redirect vulnerability in IBM Storediq IBM StoredIQ 7.6 could allow a remote attacker to conduct phishing attacks, using an open redirect attack. | 6.1 |
| 2018-11-30 | CVE-2018-1928 | Unspecified vulnerability in IBM Storediq IBM StoredIQ 7.6.0 does not implement proper authorization of user roles due to which it was possible for a low privileged user to access the application endpoints of high privileged users and also perform some state changing actions restricted to a high privileged user. | 5.5 |
| 2018-11-30 | CVE-2018-1927 | Cross-Site Request Forgery (CSRF) vulnerability in IBM Storediq IBM StoredIQ 7.6 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. | 8.8 |