2 matches found
Security Bulletin: IBM Algo One ARA reports can be accessed by another user
Summary IBM Algorithmics One-Algo Risk Application could allow a user to gain access to another user's reports using a specially crafted HTTP request. Vulnerability Details IBM Algorithmics One-Algo Risk Application could allow a user to gain access to another user's reports using a specially...
CVE-2017-1155
IBM Algorithmics One-Algo Risk Application (ARA) versions 4.9.1, 5.0, and 5.1.0 are affected by CVE-2017-1155, which could allow a user to access another user’s reports via a specially crafted HTTP request. Impact: unauthorized access to reports; CVSS v3 base score 4.3 (Network/Low complexity, Pr...