Unauthorized Access to Sensitive User Profiles in IBM Curam Social Program Management

Unauthorized Access to Sensitive User Profiles in IBM Curam Social Program Management

CVE-2016-8923 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

IBM Curam Social Program Management 5.2, 6.0, and 7.0 contains a vulnerability that would allow an authorized user to obtain sensitive information from the profile of a higher privileged user that they should not have access to. IBM X-Force ID: 118536.

Learn more about our Social Engineering.