PT-2017-12043 · Ibm · Ibm Openpages Grc Platform

Published

2017-11-01

Updated

2017-11-16

CVE-2017-1148

CVSS v3.1

5.3

Medium

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions IBM OpenPages GRC Platform versions 7.2 through 7.3

Description The issue allows a user to obtain sensitive information, including private APIs, which could be used in further attacks against the system.

Recommendations For IBM OpenPages GRC Platform versions 7.2 through 7.3, consider restricting access to the OpenPages Loss Event Entry (LEE) application until a fix is available.

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

CVE-2017-1148

Affected Products

Ibm Openpages Grc Platform

PT-2017-12043 · Ibm · Ibm Openpages Grc Platform

CVE-2017-1148

Weakness Enumeration

Related Identifiers

Affected Products

References · 5