Arbitrary User Image File Access Vulnerability in IBM TRIRIGA Application Platform

Arbitrary User Image File Access Vulnerability in IBM TRIRIGA Application Platform

CVE-2014-8895 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:N/A:N

IBM TRIRIGA Application Platform 3.2.1.x, 3.3.2 before 3.3.2.3, and 3.4.1 before 3.4.1.1 allows remote attackers to bypass intended access restrictions and read the image files of arbitrary users via a crafted URL.

Learn more about our User Device Pen Test.