Access Control Flaw in IBM TRIRIGA Application Platform
CVE-2016-0342

5.4MEDIUM

Key Information:

Vendor: IBM
Status: Tririga Application Platform
Vendor: CVE Published:; 2 February 2018

Summary

The IBM TRIRIGA Application Platform has a vulnerability that permits remote authenticated users to access and alter arbitrary reports. This flaw arises from improper access control settings, allowing unauthorized modifications or disclosures to sensitive data. Users must ensure their systems are updated to avoid exploitation.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21980252

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/111783

vdb-entryx_refsource_XF

CVSS V3.1

Score:

5.4

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Feb 2, 2018
Vulnerability Reserved
Dec 8, 2015