Lucene search
K

5 matches found

NVD
NVD
added 2026/05/13 8:16 p.m.20 views

CVE-2026-33377

An Editor can overwrite a dashboard not owned by them to acquire admin on that specific dashboard. The user must have write access to the dashboard to escalate privilege...

7.1CVSS0.00226EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/13 12:0 a.m.13 views

PT-2026-40791

Name of the Vulnerable Software and Affected Versions The product name cannot be determined affected versions not specified Description An Editor can overwrite a dashboard they do not own to acquire admin privileges for that specific dashboard. This privilege escalation requires the user to have...

7.5CVSS5.8AI score0.00271EPSS
Exploits0References156
OSV
OSV
added 2025/11/03 4:15 p.m.4 views

CVE-2025-36091

IBM Cloud Pak For Business Automation 25.0.0, 24.0.1, and 24.0.0 could allow an authenticated user to cause dashboards to become inaccessible to legitimate users due to invalid ownership assignment...

4.3CVSS5.8AI score0.0031EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/03 3:14 p.m.3 views

CVE-2025-36091 IBM Business Automation Insights unverified ownership

IBM Cloud Pak For Business Automation 25.0.0, 24.0.1, and 24.0.0 could allow an authenticated user to cause dashboards to become inaccessible to legitimate users due to invalid ownership assignment...

4.3CVSS6.1AI score0.0031EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/11/03 12:0 a.m.4 views

PT-2025-44768

Name of the Vulnerable Software and Affected Versions IBM Cloud Pak For Business Automation versions 25.0.0, 24.0.1, and 24.0.0 Description An authenticated user can cause dashboards to become inaccessible to legitimate users due to invalid ownership assignment. Recommendations Update IBM Cloud P...

4.3CVSS6.3AI score0.0031EPSS
Exploits0References4
Rows per page
Query Builder