CVE-2013-2974

Name of the Vulnerable Software and Affected Versions IBM Tivoli Application Dependency Discovery Manager (TADDM) versions 7.2.1.x through 7.2.1.4

Description The issue allows remote authenticated users to bypass authorization checks, obtaining report-administration privileges. This can lead to creating or deleting reports, or conducting SQL injection attacks, by sending crafted parameters to the BIRT reporting URL.

Recommendations For IBM Tivoli Application Dependency Discovery Manager (TADDM) versions 7.2.1.x through 7.2.1.4, update to version 7.2.1.5 or later to resolve the issue.