IBM License Metric Tool v9.x and IBM BigFix Inventory v9.x allows web pages containing sensitive information to be cached by a browser. As a result this information will be stored unsafely for an indefinite amount of time on the user’s hard drive.
CVE(s): CVE-2016-8981
Affected product(s) and affected version(s):
IBM License Metric Tool v9.x
IBM BigFix Inventory v9.x
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2ihtjzd
X-Force Database: http://ift.tt/2hoBzZG
from IBM Product Security Incident Response Team http://ift.tt/2ihnTnZ
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.