IBM InfoSphere Information Server is vulnerable to cross-frame scripting, caused by insufficient HTML iframe protection.
CVE(s): CVE-2016-5984
Affected product(s) and affected version(s):
The following products, running on all supported platforms, are affected:
IBM Information Server Framework: versions 11.3, and 11.5
IBM InfoSphere Information Server on Cloud: version 11.5
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2hAILmP
X-Force Database: http://ift.tt/2hxC5Zs
from IBM Product Security Incident Response Team http://ift.tt/2hAsTkl
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.