CVE-2015-0141

IBM OpenPages GRC Platform 6.2-6.2.1.1, 7.0-7.1 - Authenticated Arbitrary User Filter Modification via JSON Request

Title source: llm
STIX 2.1

Description

IBM OpenPages GRC Platform 6.2 before IF7, 6.2.1 before 6.2.1.1 IF5, 7.0 before FP4, and 7.1 before FP1 allows remote authenticated users to modify arbitrary user filters via a JSON request.

References (1)

Core 1
Core References
Patch, Vendor Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21963358

Scores

EPSS 0.0114
EPSS Percentile 62.8%

Details

CWE
CWE-284
Status published
Products (5)
ibm/openpages_grc_platform 6.2.0.0
ibm/openpages_grc_platform 6.2.1.0
ibm/openpages_grc_platform 6.2.1.1
ibm/openpages_grc_platform 7.0.0.0
ibm/openpages_grc_platform 7.1.0.0
Published Oct 03, 2015
Tracked Since Feb 18, 2026