Vulnerabilities > CVE-2020-4669 - Missing Authorization vulnerability in IBM Planning Analytics Cloud and Planning Analytics Local
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
NONE Summary
IBM Planning Analytics Local 2.0 connects to a MongoDB server. MongoDB, a document-oriented database system, is listening on the remote port, and it is configured to allow connections without password authentication. A remote attacker can gain unauthorized access to the database. IBM X-Force ID: 184600.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |