Access Bypass Vulnerability in IBM InfoSphere Master Data Management by IBM
CVE-2015-7424

4.3MEDIUM

Key Information:

Vendor: IBM
Status: Infosphere Master Data Management
Vendor: CVE Published:; 26 March 2018

What is CVE-2015-7424?

IBM InfoSphere Master Data Management (MDM) - Collaborative Edition versions 9.1, 10.1, 11.0, 11.3, 11.4, and 11.5 are susceptible to a vulnerability that permits remote authenticated users to bypass designated access restrictions. This flaw can be exploited to gain unauthorized access to sensitive information by taking advantage of Catalogs access capabilities. Proper security measures should be implemented to mitigate potential risks associated with this vulnerability.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21971542

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/107780

vdb-entryx_refsource_XF

CVSS V3.1

Score:

4.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 26, 2018
Vulnerability Reserved
Sep 29, 2015