IBM Forms Experience Builder could be susceptible to a server-side request forgery (SSRF) allowing for some information disclosure of internal resources.
CVE(s): CVE-2016-6001
Affected product(s) and affected version(s):
IBM Forms Experience Builder 8.5
IBM Forms Experience Builder 8.5.1
IBM Forms Experience Builder 8.6
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2kjMA4J
X-Force Database: http://ift.tt/2jp5jHW
from IBM Product Security Incident Response Team http://ift.tt/2kjQUAC
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.