Ibm: >> Sterling Selling And Fulfillment Foundation >> 9.3.0 Security Vulnerabilities
IBM Sterling Order Management 9.2 through 9.5 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 121314.
CVSS Score
8.0
EPSS Score
0.002
Published
2017-06-08
IBM Sterling Order Management 9.2 - 9.5 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM Reference #: 2000943.
CVSS Score
8.8
EPSS Score
0.002
Published
2017-03-31
Sterling Order Management in IBM Sterling Selling and Fulfillment Suite 9.3.0 before FP8 allows remote authenticated users to cause a denial of service (CPU consumption) via a '\0' character.
CVSS Score
4.0
EPSS Score
0.004
Published
2014-11-23