Unintended Access Control Vulnerability in IBM Security Identity Governance Virtual Appliance

Unintended Access Control Vulnerability in IBM Security Identity Governance Virtual Appliance

CVE-2017-1396 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:N

IBM Security Identity Governance Virtual Appliance 5.2 through 5.2.3.2 specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors. IBM X-Force ID: 127342.

Learn more about our Web Application Penetration Testing UK.