High severity8.8NVD Advisory· Published Jan 4, 2018· Updated Jun 17, 2026

CVE-2017-1672

Description

IBM Tivoli Key Lifecycle Manager 2.6 and 2.7 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 133639.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

IBM/Tivoli Key Lifecycle Managerllm-fuzzy
Range: 2.6, 2.7
IBM/Security Key Lifecycle Managercpe-rescue
Range: 2.6

Patches

Vulnerability mechanics

References

www.ibm.com/support/docview.wssnvdVendor Advisory
exchange.xforce.ibmcloud.com/vulnerabilities/133639nvdVDB EntryVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.572
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000