CVE-2015-7862

Name of the Vulnerable Software and Affected Versions Accelerite Radia Client Automation (formerly HP Client Automation) versions 7.9 through 9.1

Description The issue is related to the improper implementation of the Role Based Access Control feature, which might allow remote attackers to modify an account's role assignments. The vulnerability is associated with insufficient access control to certain functions, potentially enabling a remote attacker to change role assignments of an account.

Recommendations For Accelerite Radia Client Automation versions 7.9 through 9.1, update to a version released after 2015-02-19 to resolve the issue. As a temporary workaround, consider restricting access to the Role Based Access Control feature until a patch is available.