Arbitrary Code Execution Vulnerability in IBM Emptoris Strategic Supply Management Platform 10.x and 10.1

Arbitrary Code Execution Vulnerability in IBM Emptoris Strategic Supply Management Platform 10.x and 10.1

CVE-2017-1190 · MEDIUM Severity

AV:L/AC:H/AU:N/C:C/I:C/A:C

IBM Emptoris Strategic Supply Management Platform 10.x and 10.1 could allow a local user with special access roles to execute arbitrary code on the system. By manipulating a configurable property, an attacker could exploit this vulnerability to gain full control over the system. IBM X-Force ID: 123559.

Learn more about our User Device Pen Test.