Bypassing Authentication via Insecure Direct Object References
CVE-2024-31898
5.4MEDIUM
Summary
IBM InfoSphere Information Server 11.7 could allow an authenticated user to read or modify sensitive information by bypassing authentication using insecure direct object references. IBM X-Force ID: 288182.
Affected Version(s)
InfoSphere Information Server = 11.7
CVSS V3.1
Score:
5.4
Severity:
MEDIUM
Confidentiality:
LOW
Integrity:
LOW
Availability:
NONE
Attack Complexity:
LOW
Privileges Required:
LOW
User Interaction:
NONE
Scope:
UNCHANGED
Timeline
Vulnerability published.
Vulnerability Reserved.
Collectors
NVD DatabaseMitre Database