Access Restriction Bypass Vulnerability in IBM Cognos TM1

CVE-2014-0877 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

IBM Cognos TM1 10.2.0.2 before IF1 and 10.2.2.0 before IF1 allows remote attackers to bypass intended access restrictions by visiting the Rights page and then following a generated link.

Learn more about our Web Application Penetration Testing UK.