Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
RICOS in IBM Algo Credit Limits (aka ACLM) 4.5.0 through 4.7.0 before 4.7.0.03 FP5 in IBM Algorithmics relies on client-side input validation, which allows remote authenticated users to bypass intended dual-control restrictions and modify data via crafted serialized objects, as demonstrated by limit manipulations.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Algorithmics IBM Algo Credit Limits 输入验证漏洞
Vulnerability Description
IBM Algorithmics是美国IBM公司的一套能够帮助金融机构和企业财务部门制定风险预知的解决方案。IBM Algo Credit Limits(也称ACLM)是其中的一套相关风险管理的软件。 IBM Algorithmics中的IBM Algo Credit Limits 4.5.0和4.7.0版本的RICOS中存在安全漏洞,该漏洞源于程序只验证客户端输入。远程攻击者可借助特制的序列化对象利用该漏洞绕过既定的限制,修改数据。
CVSS Information
N/A
Vulnerability Type
N/A