Problem Note 65296: SAS® Visual Analytics Transport Service does not provide tokenized cross-site request forgery (CSRF) protection
Severity: Medium
Description: SAS Visual Analytics Transport Service does not provide tokenized CSRF protection.
Potential Impact: An attacker might cause information to be submitted to a vulnerable application on behalf of a valid user.
Click the Hot Fix tab in this note to access the hot fix for this issue.
Operating System and Release Information
SAS System | SAS Visual Analytics | Microsoft® Windows® for x64 | 7.5 | | 9.4 TS1M6 | |
Linux for x64 | 7.5 | | 9.4 TS1M6 | |
*
For software releases that are not yet generally available, the Fixed
Release is the software release in which the problem is planned to be
fixed.
Type: | Problem Note |
Priority: | high |
Date Modified: | 2020-01-08 10:35:04 |
Date Created: | 2020-01-03 10:41:53 |