Friday, July 28, 2017

IBM Security Bulletin: IBM InfoSphere Master Data Management is vulnerable to a Insecure JSF ViewState found in MDM User Interface (CVE-2016-9714)

IBM InfoSphere Master Data Management is vulnerable to a Insecure JSF ViewState found in MDM Busines Admin User Interface which could allow an attacker to execute malicious and unauthorized actions.

CVE(s): CVE-2016-9714

Affected product(s) and affected version(s):

This vulnerability is known to affect the following offerings:

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2v6awNo
X-Force Database: http://ift.tt/2tJSxsL

The post IBM Security Bulletin: IBM InfoSphere Master Data Management is vulnerable to a Insecure JSF ViewState found in MDM User Interface (CVE-2016-9714) appeared first on IBM PSIRT Blog.

Affected IBM InfoSphere Master Data Management Server Affected Versions
IBM InfoSphere Master Data Management 10.1
IBM InfoSphere Master Data Management 11.0
IBM InfoSphere Master Data Management 11.3
IBM InfoSphere Master Data Management 11.4
IBM InfoSphere Master Data Management 11.5
IBM InfoSphere Master Data Management 11.6


from IBM Product Security Incident Response Team http://ift.tt/2v5WJXa

No comments:

Post a Comment

Note: Only a member of this blog may post a comment.