3 matches found
CVE-2013-6731
CVE-2013-6731 affects IBM Netezza Performance Portal 2.x prior to 2.0.0.3. The issue allows remote authenticated users to change arbitrary passwords via an HTTP POST request, exposing credential integrity risk. Affected product: IBM Netezza Performance Portal; root cause: improper access control ...
CVE-2013-0470
IBM Netezza Performance Portal 1.0.2 is affected by CVE-2013-0470 where the HTTPD component allows remote authenticated users to list the application's directory structure and asset files. The IBM bulletin specifies directory browsing as the vulnerability, affecting version 1.0.2; a remediation i...
CVE-2014-0848
CVE-2014-0848 affects IBM Netezza Performance Portal 2.0 (before 2.0.0.4) where the Apache HTTP Server default config uses weak SSLCipherSuite values, enabling a remote attacker to potentially defeat cryptographic protections via brute-force. Vulnerable component: Apache web server in PERFPORTAL ...