CVE-2015-7863 Information

Description

The default configuration of Persistent Accelerite Radia Client Automation (formerly HP Client Automation) 7.9 through 9.1 before 2015-02-19 enables a remote Notify capability without the Extended Notify Security features which might allow remote attackers to bypass intended access restrictions via unspecified vectors.

Reference

http://www.securitytracker.com/id/1033862 https://support.accelerite.com/hc/en-us/articles/203659814-Accelerite-releases-solutions-and-best-practices-to-enhance-the-security-for-RBAC-and-Remote-Notify-features