IBM InfoSphere Master Data Management is vulnerable to a Insecure JSF ViewState found in MDM Busines Admin User Interface which could allow an attacker to execute malicious and unauthorized actions.
CVE(s): CVE-2016-9714
Affected product(s) and affected version(s):
This vulnerability is known to affect the following offerings:
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2v6awNo
X-Force Database: http://ift.tt/2tJSxsL
The post IBM Security Bulletin: IBM InfoSphere Master Data Management is vulnerable to a Insecure JSF ViewState found in MDM User Interface (CVE-2016-9714) appeared first on IBM PSIRT Blog.
Affected IBM InfoSphere Master Data Management Server | Affected Versions |
IBM InfoSphere Master Data Management | 10.1 |
IBM InfoSphere Master Data Management | 11.0 |
IBM InfoSphere Master Data Management | 11.3 |
IBM InfoSphere Master Data Management | 11.4 |
IBM InfoSphere Master Data Management | 11.5 |
IBM InfoSphere Master Data Management | 11.6 |
from IBM Product Security Incident Response Team http://ift.tt/2v5WJXa
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.