2 matches found
CVE-2016-0203
The CVE-2016-0203 issue affects IBM Cloud Orchestrator task API. An authenticated user could view background information related to actions on virtual machines within projects the user belongs to. The IBM advisory lists affected releases (Cloud Orchestrator V2.5 and V2.4 families, plus SmartCloud...
CVE-2015-7494
The CVE-2015-7494 entry relates to IBM Cloud Orchestrator: an authenticated domain admin could modify cross-domain resources via the services/[action]/launch API if able to obtain a resource identifier from another domain. The IBM bulletin details affected products (IBM Cloud Orchestrator and IBM...