VDB-99142 · CVE-2017-1154 · BID 97248

IBM Algorithmics One-Algo Risk Application 4.9.1/5.0/5.1.0 information disclosure

A vulnerability was found in IBM Algorithmics One-Algo Risk Application 4.9.1/5.0/5.1.0. It has been declared as problematic. This vulnerability affects an unknown functionality. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

Field	04/01/2017 10:09 AM	08/24/2020 12:17 PM
vendor	IBM	IBM
name	Algorithmics One-Algo Risk Application	Algorithmics One-Algo Risk Application
version	4.9.1/5.0/5.1.0	4.9.1/5.0/5.1.0
cwe	200 (information disclosure)	200 (information disclosure)
risk	1	1
historic	0	0
cvss2_vuldb_basescore	4.3	4.3
cvss2_vuldb_tempscore	4.3	4.3
cvss2_vuldb_av	L	L
cvss2_vuldb_ac	L	L
cvss2_vuldb_au	S	S
cvss2_vuldb_ci	P	P
cvss2_vuldb_ii	P	P
cvss2_vuldb_ai	P	P
cvss2_nvd_av	N	N
cvss2_nvd_ac	L	L
cvss2_nvd_au	S	S
cvss2_nvd_ci	P	P
cvss2_nvd_ii	N	N
cvss2_nvd_ai	N	N
cvss3_meta_basescore	5.9	5.9
cvss3_meta_tempscore	5.9	5.9
cvss3_vuldb_basescore	5.3	5.3
cvss3_vuldb_tempscore	5.3	5.3
cvss3_vuldb_av	L	L
cvss3_vuldb_ac	L	L
cvss3_vuldb_pr	L	L
cvss3_vuldb_ui	N	N
cvss3_vuldb_s	U	U
cvss3_vuldb_c	L	L
cvss3_vuldb_i	L	L
cvss3_vuldb_a	L	L
cvss3_nvd_av	N	N
cvss3_nvd_ac	L	L
cvss3_nvd_pr	L	L
cvss3_nvd_ui	N	N
cvss3_nvd_s	U	U
cvss3_nvd_c	H	H
cvss3_nvd_i	N	N
cvss3_nvd_a	N	N
date	1490918400 (03/31/2017)	1490918400 (03/31/2017)
url	http://www.ibm.com/support/docview.wss?uid=swg21999892	http://www.ibm.com/support/docview.wss?uid=swg21999892
price_0day	$5k-$25k	$5k-$25k
price_trend	+	+
cve	CVE-2017-1154	CVE-2017-1154
cve_assigned	1480464000	1480464000
cve_nvd_published	1490918400	1490918400
cve_nvd_summary	IBM Algorithmics One-Algo Risk Application 4.9.1, 5.0, and 5.1.0 could allow a user to gain access to files in the local environment which should not be viewed by application users. IBM Reference #: 1999892.	IBM Algorithmics One-Algo Risk Application 4.9.1, 5.0, and 5.1.0 could allow a user to gain access to files in the local environment which should not be viewed by application users. IBM Reference #: 1999892.
securityfocus	97248	97248
securityfocus_title	IBM Algo One CVE-2017-1154 Unauthorized Access Vulnerability	IBM Algo One CVE-2017-1154 Unauthorized Access Vulnerability
location	Website	Website
cvss2_vuldb_e	ND	ND
cvss2_vuldb_rl	ND	ND
cvss2_vuldb_rc	ND	ND
cvss3_vuldb_e	X	X
cvss3_vuldb_rl	X	X
cvss3_vuldb_rc	X	X
0day_days	2	2
cvss3_nvd_basescore	6.5	6.5
discoverydate		1490745600
confirm_url		http://www.ibm.com/support/docview.wss?uid=swg21999892
osvdb_title		CVE-2017-1154 - IBM - Algo One - Privilege Escalation Issue
securityfocus_date		1490745600 (03/29/2017)
securityfocus_class		Input Validation Error

◂ Previous Overview Next ▸

Do you need the next level of professionalism?

Upgrade your account now!