The OAC component in IBM Financial Transaction Manager (FTM) 2.0 prior to 2.0.0.3 does not properly enforce operator-intervention requirements, which allows remote authenticated users to bypass intended access restrictions via an unspecified process step.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm financial transaction manager 2.0.0.0 |
||
ibm financial transaction manager 2.0.0.1 |
||
ibm financial transaction manager 2.0.0.2 |