First published: Mon Jul 07 2014(Updated: )
RICOS in IBM Algo Credit Limits (aka ACLM) 4.5.0 through 4.7.0 before 4.7.0.03 FP5 in IBM Algorithmics relies on client-side input validation, which allows remote authenticated users to bypass intended dual-control restrictions and modify data via crafted serialized objects, as demonstrated by limit manipulations.
Credit: psirt@us.ibm.com
Affected Software | Affected Version | How to fix |
---|---|---|
IBM Algo Credit Limits | =4.5.0 | |
IBM Algo Credit Limits | =4.7.0 | |
IBM Algorithmics |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.