Vulnerability Details CVE-2016-8999
IBM InfoSphere Information Server contains a Path-relative stylesheet import vulnerability that allows attackers to render a page in quirks mode thereby facilitating an attacker to inject malicious CSS.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 50.2%
CVSS Severity
CVSS v3 Score 5.4
CVSS v2 Score 3.5
References
Products affected by CVE-2016-8999
-
cpe:2.3:a:ibm:infosphere_datastage:11.3
-
cpe:2.3:a:ibm:infosphere_datastage:11.5
-
cpe:2.3:a:ibm:infosphere_datastage:8.7
-
cpe:2.3:a:ibm:infosphere_datastage:9.1
-
cpe:2.3:a:ibm:infosphere_information_server:11.3
-
cpe:2.3:a:ibm:infosphere_information_server:11.5
-
cpe:2.3:a:ibm:infosphere_information_server:8.7
-
cpe:2.3:a:ibm:infosphere_information_server:9.1
-
cpe:2.3:a:ibm:infosphere_information_server_on_cloud:11.5