IBM Security Bulletin: IBM TRIRIGA Application Platform builder tools are vulnerable to privilege escalation attacks. (CVE-2016-0374)

IBM TRIRIGA builder tools are vulnerable to a privilege escalation attack that can result in a user without access having the ability to modify TRIRIGA Applications.

CVE(s): CVE-2016-0374

Affected product(s) and affected version(s):

The following IBM TRIRIGA Application Platform versions are affected.
· IBM TRIRIGA Application Platform 3.5.
· IBM TRIRIGA Application Platform 3.4.
· IBM TRIRIGA Application Platform 3.3.

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/1UhQL7g
X-Force Database: http://ift.tt/1X0xSf4



from IBM Product Security Incident Response Team http://ift.tt/1TZKKQv