Read the original article: API Security Weekly: Issue #80
Vulnerability: IBM Data Risk Manager
Pedro Ribeiro found a bunch of security vulnerabilities in IBM Data Risk Manager (IDRM). This is a control center that helps to locate, analyze, and visualize data-related business risks, so something you would like to be risk-free in itself.
For some internal process reason, IBM refused to accept Ribeiro’s report so the information got published online and the exploit details are now publicly available. To IBM’s credit, they did release a patch within hours. of this happening.
Read the original article: API Security Weekly: Issue #80