CVE-2016-2917

Sažetak

The notifications component in IBM TRIRIGA Applications 10.4 and 10.5 before 10.5.1 allows remote authenticated users to obtain sensitive password information, and consequently gain privileges, via unspecified vectors.

Reference

http://www-01.ibm.com/support/docview.wss?uid=swg1IV84740
http://www-01.ibm.com/support/docview.wss?uid=swg21984304

CVSS

Base:	6.5
Impact:	6.4
Exploitability:	8.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:L/Au:S/C:P/I:P/A:P

Zadnje važnije ažuriranje

01-12-2016 - 19:24

Objavljeno

30-11-2016 - 20:59