NVD

Id
35774  
Name
CVE-2014-8895  
Description
IBM TRIRIGA Application Platform 3.2.1.x, 3.3.2 before 3.3.2.3, and 3.4.1 before 3.4.1.1 allows remote attackers to bypass intended access restrictions and read the image files of arbitrary users via a crafted URL.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:P/I:N/A:N)  
Pub Date
2017-01-19  
Published
2015-01-28  
Modified Date
2015-09-17  
Seq
2014-8895  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
183232 35774 CVE-2014-8895 http://www-01.ibm.com/support/docview.wss?uid=swg21694771  View
183233 35774 CVE-2014-8895 72430  View
183234 35774 CVE-2014-8895 ibm-tririga-cve20148895-auth(99014)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
18936 JVNDB-2014-007811 IBM TRIRIGA Application Platform におけるアクセス制限を回避される脆弱性 IBM TRIRIGA Application Platform には、アクセス制限を回避され、任意のユーザの画像ファイルを読まれる脆弱性が存在します。 CVE-2014-8895 76188 CVE-2014-8895 35774 4.3 http://jvndb.jvn.jp/ja/contents/2014/JVNDB-2014-007811.html 2014-11-14 2015-01-30 View