Friday, July 28, 2017

IBM Security Bulletin: IBM InfoSphere Master Data Management Server is vulnerable to cross-site scripting Attack (CVE-2016-9715)

Jul 28, 2017 10:00 am EDT

Categorized: Medium Severity

Share this post:

IBM InfoSphere Master Data Management is vulnerable to a cross-site scripting Attack and could allow users to embed arbitrary JavaScript code in the Web UI and lead to disclosure of credentials.

CVE(s): CVE-2016-9715

Affected product(s) and affected version(s):

This vulnerability is known to affect the following offerings:

Affected IBM InfoSphere Master Data Management Server Affected Versions
IBM InfoSphere Master Data Management 11.0
IBM InfoSphere Master Data Management 11.3
IBM InfoSphere Master Data Management 11.4
IBM InfoSphere Master Data Management 11.5
IBM InfoSphere Master Data Management 11.6

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2v6gpKE
X-Force Database: http://ift.tt/2tJiyrY



from IBM Product Security Incident Response Team http://ift.tt/2v6woIo
Posted by at

No comments:

Post a Comment

Note: Only a member of this blog may post a comment.

Subscribe to: Post Comments (Atom)