2 matches found
CVE-2019-4066
IBM IOC CVE-2019-4066 affects IBM Intelligent Operations Center (IOC) 5.1.0–5.2.0; IOC for Emergency Management 5.1.0–5.1.0.6; and Water Operations for Waternamics 5.1.0–5.2.1.1. An authenticated user can create arbitrary user accounts, causing ID-management issues and potentially enabling code e...
Security Bulletin: IBM® Intelligent Operations Center has a weak user-creation policy (CVE-2019-4066)
Summary An authenticated user can create users with malformed user IDs in IBM® Intelligent Operations Center so that these new users cannot be deleted later from the system. Because the malformed users cannot be deleted at the application level, this is a denial of service issue. Vulnerability...