CVE-2015-7466

2016-01-10T03:59:00
ID CVE-2015-7466
Type cve
Reporter cve@mitre.org
Modified 2016-01-12T02:43:00

Description

Lifecycle Query Engine (LQE) in IBM Jazz Reporting Service (JRS) 6.0 before 6.0.0-Rational-CLM-ifix005 allows remote authenticated users to conduct LDAP injection attacks, and consequently bypass intended query restrictions or modify the LDAP directory, via unspecified vectors.