2 matches found
CVE-2018-1928
CVE-2018-1928 affects IBM StoredIQ 7.6.0. The issue is improper authorization of user roles, allowing a low-privileged user to access endpoints and perform state-changing actions intended for high-privileged users. The vulnerability’s impact is described in IBM and CVE records, with CVSS v3.0 vec...
Security Bulletin: IBM StoredIQ Privilege Insufficient Authorization
Summary IBM StoredIQ has addressed the vulnerability of not implementing proper authorization of user roles. Vulnerability Details CVEID: CVE-2018-1928 DESCRIPTION: IBM StoredIQ does not implement proper authorization of user roles due to which it was possible for a low privileged user to access...