Jul 28, 2017 10:00 am EDT
Categorized: Medium Severity
Share this post:
IBM InfoSphere Master Data Management is vulnerable to a cross-site scripting Attack and could allow users to embed arbitrary JavaScript code in the Web UI and lead to disclosure of credentials.
CVE(s): CVE-2016-9715
Affected product(s) and affected version(s):
This vulnerability is known to affect the following offerings:
Affected IBM InfoSphere Master Data Management Server | Affected Versions |
IBM InfoSphere Master Data Management | 11.0 |
IBM InfoSphere Master Data Management | 11.3 |
IBM InfoSphere Master Data Management | 11.4 |
IBM InfoSphere Master Data Management | 11.5 |
IBM InfoSphere Master Data Management | 11.6 |
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2v6gpKE
X-Force Database: http://ift.tt/2tJiyrY
Archives
from IBM Product Security Incident Response Team http://ift.tt/2v6woIo
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.