File Access Vulnerability in IBM Algorithmics One-Algo Risk Application
CVE-2017-1154

6.5MEDIUM

Key Information:

Vendor: IBM
Status: Algo One
Vendor: CVE Published:; 31 March 2017

What is CVE-2017-1154?

A vulnerability in the IBM Algorithmics One-Algo Risk Application could allow unauthorized users to access files within the local environment. This exposure may enable access to sensitive information that should be restricted to authorized application users only. Systems running versions 4.9.1, 5.0, and 5.1.0 are particularly susceptible to this issue, requiring attention from system administrators to mitigate potential risks and protect sensitive data.

Affected Version(s)

Algo One 5

Algo One 4.9

Algo One 5.0

References

http://www.ibm.com/support/docview.wss?uid=swg21999892

x_refsource_CONFIRM

http://www.securityfocus.com/bid/97248

vdb-entryx_refsource_BID

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 31, 2017
Vulnerability Reserved
Nov 30, 2016