Описание
IBM Concert Software 1.0.0, 1.0.1, 1.0.2, and 1.0.2.1 could allow an authenticated user to perform unauthorized actions that should be reserved to administrator used due to improper access controls.
Ссылки
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:ibm:concert:1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:concert:1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:concert:1.0.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:concert:1.0.2.1:*:*:*:*:*:*:*
EPSS
Процентиль: 23%
0.00076
Низкий
4.3 Medium
CVSS3
8.8 High
CVSS3
Дефекты
CWE-286
NVD-CWE-noinfo
Связанные уязвимости
CVSS3: 4.3
github
около 1 года назад
IBM Concert Software 1.0.0, 1.0.1, 1.0.2, and 1.0.2.1 could allow an authenticated user to perform unauthorized actions that should be reserved to administrator used due to improper access controls.
EPSS
Процентиль: 23%
0.00076
Низкий
4.3 Medium
CVSS3
8.8 High
CVSS3
Дефекты
CWE-286
NVD-CWE-noinfo