Описание
IBM Curam Social Program Management 6.0.5, 6.1.1, 6.2.0, and 7.0.1 within Citizen Portal could allow an authenticated user to withdraw other user's submitted applications from the system and possibly obtain privileges. IBM X-Force ID: 137380.
Ссылки
- Vendor Advisory
- VDB EntryVendor Advisory
- Vendor Advisory
- VDB EntryVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:ibm:curam_social_program_management:6.0.5:*:*:*:*:*:*:*
cpe:2.3:a:ibm:curam_social_program_management:6.1.1.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:curam_social_program_management:6.2.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:curam_social_program_management:7.0.1:*:*:*:*:*:*:*
EPSS
Процентиль: 49%
0.00256
Низкий
5 Medium
CVSS3
6 Medium
CVSS2
Дефекты
NVD-CWE-noinfo
Связанные уязвимости
CVSS3: 5
github
больше 3 лет назад
IBM Curam Social Program Management 6.0.5, 6.1.1, 6.2.0, and 7.0.1 within Citizen Portal could allow an authenticated user to withdraw other user's submitted applications from the system and possibly obtain privileges. IBM X-Force ID: 137380.
EPSS
Процентиль: 49%
0.00256
Низкий
5 Medium
CVSS3
6 Medium
CVSS2
Дефекты
NVD-CWE-noinfo