IBM Security Bulletin: Cross-Site Request Forgery Vulnerability in IBM WebSphere Portal (CVE-2016-2901)

A fix is available for a Cross-Site Request Forgery vulnerability in IBM WebSphere Portal (CVE-2016-2901).

CVE(s): CVE-2016-2901

Affected product(s) and affected version(s):

IBM WebSphere Portal 8.5 (CF08 – CF10 inclusive)

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/23dZRbD
X-Force Database: http://ift.tt/28Hp8yX

from IBM Product Security Incident Response Team http://ift.tt/23dZU78