Remote Password Change Vulnerability in IBM Netezza Performance Portal
CVE-2013-6731

Currently unrated

Key Information:

Vendor: IBM
Status: Netezza Performance Portal
Vendor: CVE Published:; 26 February 2014

Summary

IBM Netezza Performance Portal versions prior to 2.0.0.3 contain a vulnerability that allows remote authenticated users to alter arbitrary passwords through an HTTP POST request. This flaw could lead to unauthorized access and manipulation of user accounts, thereby undermining the security of the application and its data.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21663353

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/89393

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Feb 26, 2014
Vulnerability Reserved
Nov 8, 2013