PT-2015-6752 · Ibm · Ibm Cognos Disclosure Management
Publicado
2015-10-26
·
Atualizado
2015-10-27
·
CVE-2015-5014
CVSS v2.0
9.3
Alta
| Vetor | AV:N/AC:M/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
IBM Cognos Disclosure Management (CDM) versions 10.1.x through 10.2.x before 10.2.4 IF10
Description
The issue allows man-in-the-middle attackers to obtain access by spoofing an executable file during a client upload operation.
Recommendations
For versions 10.1.x through 10.2.x before 10.2.4 IF10, update to version 10.2.4 IF10 or later to resolve the issue.
Correção
RCE
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Ibm Cognos Disclosure Management