Unauthorized Access to Settings in IBM RSA DM

Unauthorized Access to Settings in IBM RSA DM

CVE-2017-1602 · MEDIUM Severity

AV:N/AC:L/AU:S/C:N/I:P/A:N

IBM RSA DM (IBM Rational Collaborative Lifecycle Management 5.0 and 6.0) could allow an authenticated user to access settings that they should not be able to using a specially crafted URL. IBM X-Force ID: 132625.

Learn more about our User Device Pen Test.