RICOS in IBM Algo Credit Limits (aka ACLM) 4.5.0 through 4.7.0 before 4.7.0.03 FP5 in IBM Algorithmics relies on client-side input validation, which allows remote authenticated users to bypass intended dual-control restrictions and modify data via a crafted XML document, as demonstrated by manipulation of read-only limit data.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: ibm
Published: 2014-07-07T10:00:00
Updated: 2024-08-06T09:27:20.301Z
Reserved: 2014-01-06T00:00:00
Link: CVE-2014-0868
Vulnrichment
No data.
NVD
Status : Modified
Published: 2014-07-07T11:01:28.917
Modified: 2018-10-09T19:42:09.937
Link: CVE-2014-0868
Redhat
No data.