CVE-2017-1153

HIGH

IBM TRIRIGA Report Manager <3.6 - Privilege Escalation

Title source: llm
STIX 2.1

Description

IBM TRIRIGA Report Manager 3.2 through 3.5 contains a vulnerability that could allow an authenticated user to execute actions that they do not have access to. IBM Reference #: 1999563.

References (2)

Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/97066
Patch, Vendor Advisory x_refsource_confirm
http://www.ibm.com/support/docview.wss?uid=swg21999563

Scores

CVSS v3 8.8
EPSS 0.0053
EPSS Percentile 67.3%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

Status published
Products (46)
ibm/tririga_application_platform 3.3.0.0
ibm/tririga_application_platform 3.3.0.1
ibm/tririga_application_platform 3.3.0.2
ibm/tririga_application_platform 3.3.1.0
ibm/tririga_application_platform 3.3.1.1
ibm/tririga_application_platform 3.3.1.2
ibm/tririga_application_platform 3.3.1.3
ibm/tririga_application_platform 3.3.2.0
ibm/tririga_application_platform 3.3.2.1
ibm/tririga_application_platform 3.3.2.2
... and 36 more
Published Mar 27, 2017
Tracked Since Feb 18, 2026