What is the severity of CVE-2016-0374?

CVE-2016-0374 has a medium severity rating due to the potential for remote authenticated users to gain elevated privileges.

How do I fix CVE-2016-0374?

To fix CVE-2016-0374, upgrade your IBM TRIRIGA Application Platform to version 3.3.2.6, 3.4.2.4, or 3.5.0.2 or later.

What versions of IBM TRIRIGA Application Platform are affected by CVE-2016-0374?

CVE-2016-0374 affects versions 3.3.0.0 to 3.3.2.5, 3.4.0.0 to 3.4.2.3, and 3.5.0.0 to 3.5.0.1 of IBM TRIRIGA Application Platform.

Can CVE-2016-0374 be exploited remotely?

Yes, CVE-2016-0374 can be exploited by remote authenticated users to gain unauthorized privileges.

Is user authentication necessary for CVE-2016-0374 exploitation?

Yes, exploitation of CVE-2016-0374 requires that the attacker is an authenticated user.

Vulnerability/
CVE-2016-0374

high

8.8

CWE

264

1/7/2016

5/8/2024

CVE-2016-0374

First published: Fri Jul 01 2016(Updated: )

The builder tools in IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4 before 3.4.2.4, and 3.5 before 3.5.0.2 allow remote authenticated users to gain privileges for application modification via unspecified vectors.

Credit: psirt@us.ibm.com

Affected Software	Affected Version	How to fix
IBM TRIRIGA Application Platform	=3.3.0.0
IBM TRIRIGA Application Platform	=3.3.0.1
IBM TRIRIGA Application Platform	=3.3.0.2
IBM TRIRIGA Application Platform	=3.3.1.0
IBM TRIRIGA Application Platform	=3.3.1.1
IBM TRIRIGA Application Platform	=3.3.1.2
IBM TRIRIGA Application Platform	=3.3.1.3
IBM TRIRIGA Application Platform	=3.3.2.0
IBM TRIRIGA Application Platform	=3.3.2.1
IBM TRIRIGA Application Platform	=3.3.2.2
IBM TRIRIGA Application Platform	=3.3.2.3
IBM TRIRIGA Application Platform	=3.3.2.4
IBM TRIRIGA Application Platform	=3.3.2.5
IBM TRIRIGA Application Platform	=3.4.0.0
IBM TRIRIGA Application Platform	=3.4.0.1
IBM TRIRIGA Application Platform	=3.4.1.0
IBM TRIRIGA Application Platform	=3.4.1.1
IBM TRIRIGA Application Platform	=3.4.1.2
IBM TRIRIGA Application Platform	=3.4.1.3
IBM TRIRIGA Application Platform	=3.4.2.0
IBM TRIRIGA Application Platform	=3.4.2.1
IBM TRIRIGA Application Platform	=3.4.2.2
IBM TRIRIGA Application Platform	=3.4.2.3
IBM TRIRIGA Application Platform	=3.5.0.0
IBM TRIRIGA Application Platform	=3.5.0.1

Never miss a vulnerability like this again

Reference Links

http://www-01.ibm.com/support/docview.wss?uid=swg21981729

Frequently Asked Questions

What is the severity of CVE-2016-0374?
CVE-2016-0374 has a medium severity rating due to the potential for remote authenticated users to gain elevated privileges.
How do I fix CVE-2016-0374?
To fix CVE-2016-0374, upgrade your IBM TRIRIGA Application Platform to version 3.3.2.6, 3.4.2.4, or 3.5.0.2 or later.
What versions of IBM TRIRIGA Application Platform are affected by CVE-2016-0374?
CVE-2016-0374 affects versions 3.3.0.0 to 3.3.2.5, 3.4.0.0 to 3.4.2.3, and 3.5.0.0 to 3.5.0.1 of IBM TRIRIGA Application Platform.
Can CVE-2016-0374 be exploited remotely?
Yes, CVE-2016-0374 can be exploited by remote authenticated users to gain unauthorized privileges.
Is user authentication necessary for CVE-2016-0374 exploitation?
Yes, exploitation of CVE-2016-0374 requires that the attacker is an authenticated user.

collector/nvd-index
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/severity
agent/weakness
agent/last-modified-date
agent/author
agent/references
agent/tags
agent/first-publish-date
agent/description
agent/event
agent/source
vendor/ibm
canonical/ibm tririga application platform
version/ibm tririga application platform/3.3.0.0
version/ibm tririga application platform/3.3.0.1
version/ibm tririga application platform/3.3.0.2
version/ibm tririga application platform/3.3.1.0
version/ibm tririga application platform/3.3.1.1
version/ibm tririga application platform/3.3.1.2
version/ibm tririga application platform/3.3.1.3
version/ibm tririga application platform/3.3.2.0
version/ibm tririga application platform/3.3.2.1
version/ibm tririga application platform/3.3.2.2
version/ibm tririga application platform/3.3.2.3
version/ibm tririga application platform/3.3.2.4
version/ibm tririga application platform/3.3.2.5
version/ibm tririga application platform/3.4.0.0
version/ibm tririga application platform/3.4.0.1
version/ibm tririga application platform/3.4.1.0
version/ibm tririga application platform/3.4.1.1
version/ibm tririga application platform/3.4.1.2
version/ibm tririga application platform/3.4.1.3
version/ibm tririga application platform/3.4.2.0
version/ibm tririga application platform/3.4.2.1
version/ibm tririga application platform/3.4.2.2
version/ibm tririga application platform/3.4.2.3
version/ibm tririga application platform/3.5.0.0
version/ibm tririga application platform/3.5.0.1