CVE-2016-0342

MEDIUM

IBM TRIRIGA Application Platform <3.3.2.6, <3.4.2.3, <3.5.0.1 - Pri...

Title source: llm
STIX 2.1

Description

IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4 before 3.4.2.3, and 3.5 before 3.5.0.1 allows remote authenticated users to read or modify arbitrary reports by leveraging an incorrect grant of access. IBM X-Force ID: 111783.

References (2)

Core 2
Core References
Vendor Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21980252
VDB Entry, Vendor Advisory vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/111783

Scores

CVSS v3 5.4
EPSS 0.0067
EPSS Percentile 47.5%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

Details

CWE
CWE-284
Status published
Products (2)
ibm/tririga_application_platform 3.5.0.0
ibm/tririga_application_platform 3.3.0.0 - 3.3.2.6
Published Feb 02, 2018
Tracked Since Feb 18, 2026