What is the severity of CVE-2017-1171?

CVE-2017-1171 has been rated as Medium severity due to its potential to allow unauthorized actions by authenticated users.

How do I fix CVE-2017-1171?

To resolve CVE-2017-1171, it is recommended to apply the latest security fix provided by IBM for the TRIRIGA Application Platform.

Who is affected by CVE-2017-1171?

CVE-2017-1171 affects users of the IBM TRIRIGA Application Platform versions 3.3, 3.4, and 3.5.

What type of vulnerability is CVE-2017-1171?

CVE-2017-1171 is an access control vulnerability that could permit unauthorized execution of actions.

When was CVE-2017-1171 disclosed?

CVE-2017-1171 was disclosed in 2017 as part of IBM's security advisories.

Vulnerability/
CVE-2017-1171

medium

4.3

31/3/2017

5/8/2024

CVE-2017-1171

First published: Fri Mar 31 2017(Updated: )

The IBM TRIRIGA Application Platform 3.3, 3,4, and 3,5 contain a vulnerability that could allow an authenticated user to execute Application actions they do not have access to. IBM Reference #: 2001083.

Credit: psirt@us.ibm.com

Affected Software	Affected Version	How to fix
IBM TRIRIGA Application Platform	=3.3.0.0
IBM TRIRIGA Application Platform	=3.3.0.1
IBM TRIRIGA Application Platform	=3.3.0.2
IBM TRIRIGA Application Platform	=3.3.1.0
IBM TRIRIGA Application Platform	=3.3.1.1
IBM TRIRIGA Application Platform	=3.3.1.2
IBM TRIRIGA Application Platform	=3.3.1.3
IBM TRIRIGA Application Platform	=3.3.2.0
IBM TRIRIGA Application Platform	=3.3.2.1
IBM TRIRIGA Application Platform	=3.3.2.2
IBM TRIRIGA Application Platform	=3.3.2.3
IBM TRIRIGA Application Platform	=3.3.2.4
IBM TRIRIGA Application Platform	=3.3.2.5
IBM TRIRIGA Application Platform	=3.4.0.0
IBM TRIRIGA Application Platform	=3.4.0.1
IBM TRIRIGA Application Platform	=3.4.1.0
IBM TRIRIGA Application Platform	=3.4.1.1
IBM TRIRIGA Application Platform	=3.4.1.2
IBM TRIRIGA Application Platform	=3.4.1.3
IBM TRIRIGA Application Platform	=3.4.2.0
IBM TRIRIGA Application Platform	=3.4.2.1
IBM TRIRIGA Application Platform	=3.4.2.2
IBM TRIRIGA Application Platform	=3.4.2.3
IBM TRIRIGA Application Platform	=3.4.2.4
IBM TRIRIGA Application Platform	=3.4.2.5
IBM TRIRIGA Application Platform	=3.5.0.0
IBM TRIRIGA Application Platform	=3.5.0.1
IBM TRIRIGA Application Platform	=3.5.0.2
IBM TRIRIGA Application Platform	=3.5.1
IBM TRIRIGA Application Platform	=3.5.1.1
IBM TRIRIGA Application Platform	=3.5.1.2
IBM TRIRIGA Application Platform	=3.5.1.3
IBM TRIRIGA Application Platform	=3.5.2

Remedy

https://www.ibm.com/support/docview.wss?uid=swg22001083

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2017-1171?
CVE-2017-1171 has been rated as Medium severity due to its potential to allow unauthorized actions by authenticated users.
How do I fix CVE-2017-1171?
To resolve CVE-2017-1171, it is recommended to apply the latest security fix provided by IBM for the TRIRIGA Application Platform.
Who is affected by CVE-2017-1171?
CVE-2017-1171 affects users of the IBM TRIRIGA Application Platform versions 3.3, 3.4, and 3.5.
What type of vulnerability is CVE-2017-1171?
CVE-2017-1171 is an access control vulnerability that could permit unauthorized execution of actions.
When was CVE-2017-1171 disclosed?
CVE-2017-1171 was disclosed in 2017 as part of IBM's security advisories.

collector/nvd-index
agent/references
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/author
agent/last-modified-date
agent/remedy
agent/severity
agent/first-publish-date
agent/event
agent/description
agent/tags
agent/source
vendor/ibm
canonical/ibm tririga application platform
version/ibm tririga application platform/3.3.0.0
version/ibm tririga application platform/3.3.0.1
version/ibm tririga application platform/3.3.0.2
version/ibm tririga application platform/3.3.1.0
version/ibm tririga application platform/3.3.1.1
version/ibm tririga application platform/3.3.1.2
version/ibm tririga application platform/3.3.1.3
version/ibm tririga application platform/3.3.2.0
version/ibm tririga application platform/3.3.2.1
version/ibm tririga application platform/3.3.2.2
version/ibm tririga application platform/3.3.2.3
version/ibm tririga application platform/3.3.2.4
version/ibm tririga application platform/3.3.2.5
version/ibm tririga application platform/3.4.0.0
version/ibm tririga application platform/3.4.0.1
version/ibm tririga application platform/3.4.1.0
version/ibm tririga application platform/3.4.1.1
version/ibm tririga application platform/3.4.1.2
version/ibm tririga application platform/3.4.1.3
version/ibm tririga application platform/3.4.2.0
version/ibm tririga application platform/3.4.2.1
version/ibm tririga application platform/3.4.2.2
version/ibm tririga application platform/3.4.2.3
version/ibm tririga application platform/3.4.2.4
version/ibm tririga application platform/3.4.2.5
version/ibm tririga application platform/3.5.0.0
version/ibm tririga application platform/3.5.0.1
version/ibm tririga application platform/3.5.0.2
version/ibm tririga application platform/3.5.1
version/ibm tririga application platform/3.5.1.1
version/ibm tririga application platform/3.5.1.2
version/ibm tririga application platform/3.5.1.3
version/ibm tririga application platform/3.5.2