2 matches found
Security Bulletin: IBM TRIRIGA Applications are vulnerable to a privilege escalation attack. (CVE-2016-2917)
Summary IBM TRIRIGA Application notifications are vulnerable to a privilege escalation attack that could grant a user a higher privilege in the system.. Vulnerability Details CVEID: CVE-2016-2917 DESCRIPTION: IBM TRIRIGA Application notifications that contain password information can be accessed ...
CVE-2016-2917
The CVE-2016-2917 issue affects IBM TRIRIGA Applications 10.4 and 10.5, where the notifications component before 10.5.1 can expose password information to remote authenticated users, enabling privilege escalation via unspecified vectors. IBM UR bulletin confirms affected versions and provides fix...