Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The BIRT viewer in IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.2.1.x before 7.2.1.5 allows remote authenticated users to bypass authorization checks and obtain report-administration privileges, and consequently create or delete reports or conduct SQL injection attacks, via crafted parameters to the BIRT reporting URL.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Tivoli Application Dependency Discovery Manager 权限许可和访问控制漏洞
Vulnerability Description
IBM Tivoli Application Dependency Discovery Manager(TADDM)是美国IBM公司的一套IT服务管理解决方案中的产品,它提供了健全的自动化应用程序映射和发现,帮助管理员了解业务应用程序的结构、状态、配置和变更历史记录。 IBM TADDM 7.2.1.5之前的7.2.1.x版本中的BIRT查看器中存在安全漏洞。远程攻击者可借助BIRT reporting URL中特制的参数利用该漏洞绕过身份验证检查,获取‘report-administration’权限,
CVSS Information
N/A
Vulnerability Type
N/A