Data Exposure Vulnerability in IBM TRIRIGA Application Platform
CVE-2017-1374

6.5MEDIUM

Key Information:

Vendor: IBM
Status: Tririga Application Platform
Vendor: CVE Published:; 21 July 2017

Summary

The IBM TRIRIGA Application Platform versions 3.3, 3.4, and 3.5 contain a vulnerability that can lead to the exposure of sensitive data. An attacker could exploit this flaw to gain unauthorized access to user information, potentially compromising the integrity of the application and putting sensitive organizational data at risk. Organizations using this platform should apply necessary patches to mitigate this vulnerability.

Affected Version(s)

TRIRIGA Application Platform 3.3

TRIRIGA Application Platform 3.3.1

TRIRIGA Application Platform 3.3.2

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/126867

x_refsource_MISC

http://www.ibm.com/support/docview.wss?uid=swg22004681

x_refsource_CONFIRM

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jul 21, 2017
Vulnerability Reserved
Nov 30, 2016