CVE-2015-7466

Name of the Vulnerable Software and Affected Versions IBM Jazz Reporting Service (JRS) version 6.0 before 6.0.0-Rational-CLM-ifix005

Description The issue allows remote authenticated users to conduct LDAP injection attacks. This can lead to bypassing intended query restrictions or modifying the LDAP directory. The attack is conducted via unspecified vectors.

Recommendations For IBM Jazz Reporting Service (JRS) version 6.0 before 6.0.0-Rational-CLM-ifix005, update to version 6.0.0-Rational-CLM-ifix005 or later to resolve the issue. As a temporary workaround, consider restricting access to the LDAP directory to minimize the risk of exploitation.