PT-2018-5607 · Ibm · Ibm Security Identity Governance Virtual Appliance
Publicado
2018-08-06
·
Atualizado
2019-10-09
·
CVE-2017-1396
CVSS v3.1
8.1
Alta
| Vetor | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N |
Name of the Vulnerable Software and Affected Versions:
IBM Security Identity Governance Virtual Appliance versions 5.2 through 5.2.3.2
Description:
The issue allows a security-critical resource to be read or modified by unintended actors due to improper permission specifications.
Recommendations:
For versions 5.2 through 5.2.3.2, update to a version that properly specifies permissions for security-critical resources to prevent unintended access.
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Ibm Security Identity Governance Virtual Appliance