CVE-2017-1422

low

Published 2017-08-22 · Modified 2026-05-13

CVSS v3

3.3

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

CVSS v2

2.1

VIR risk

3.3

Description

IBM MaaS360 DTM all versions up to 3.81 does not perform proper verification for user rights of certain applications which could disclose sensitive information. IBM X-Force ID: 127412.

Predictions

Exploit likelihood

34%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: psirt@us.ibm.com — https://exchange.xforce.ibmcloud.com/vulnerabilities/127412

vendor Authored 2026-05-27

Vendor advisory: psirt@us.ibm.com — http://www.ibm.com/support/docview.wss?uid=swg22006985

Application impact

Vendor	Product	Versions	Fixed
ibm	maas360_dtm	`{"endIncluding":"3.81"}`

References

http://www.ibm.com/support/docview.wss?uid=swg22006985
http://www.securityfocus.com/bid/100415
https://exchange.xforce.ibmcloud.com/vulnerabilities/127412
http://www.ibm.com/support/docview.wss?uid=swg22006985
http://www.securityfocus.com/bid/100415
https://exchange.xforce.ibmcloud.com/vulnerabilities/127412

CWEs

CWE-200

Verify integrity in audit chain (admin only). AS-IS.