Lucene search

[email protected]CVE-2015-0141

HistoryOct 03, 2015 - 10:59 p.m.

CVE-2015-0141

2015-10-0322:59:00

CWE-284

[email protected]

web.nvd.nist.gov

ibm

openpages

grc platform

security

vulnerability

cve-2015-0141

if7

if5

fp4

fp1

json request

nvd

6.4 Medium

AI Score

Confidence

Low

4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:S/C:N/I:P/A:N

0.001 Low

EPSS

Percentile

34.0%

JSON

IBM OpenPages GRC Platform 6.2 before IF7, 6.2.1 before 6.2.1.1 IF5, 7.0 before FP4, and 7.1 before FP1 allows remote authenticated users to modify arbitrary user filters via a JSON request.

CPENameOperatorVersion
ibm:openpages_grc_platformibm openpages grc platformeq6.2.1.1
ibm:openpages_grc_platformibm openpages grc platformeq7.1.0.0
ibm:openpages_grc_platformibm openpages grc platformeq6.2.0.0
ibm:openpages_grc_platformibm openpages grc platformeq7.0.0.0
ibm:openpages_grc_platformibm openpages grc platformeq6.2.1.0

CPE	Name	Operator	Version
ibm:openpages_grc_platform	ibm openpages grc platform	eq	6.2.1.1
ibm:openpages_grc_platform	ibm openpages grc platform	eq	7.1.0.0
ibm:openpages_grc_platform	ibm openpages grc platform	eq	6.2.0.0
ibm:openpages_grc_platform	ibm openpages grc platform	eq	7.0.0.0
ibm:openpages_grc_platform	ibm openpages grc platform	eq	6.2.1.0

References

www-01.ibm.com/support/docview.wss?uid=swg21963358

6.4 Medium

AI Score

Confidence

Low

4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:S/C:N/I:P/A:N

0.001 Low

EPSS

Percentile

34.0%

JSON

Related for CVE-2015-0141

prion1 cvelist1 ibm1