CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-9715

IBM InfoSphere Master Data Management Server 11.0, 11.3, 11.4, 11.5, and 11.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 119728.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 50.3%

CVSS Severity

CVSS v3 Score 5.4

CVSS v2 Score 3.5

References

Products affected by CVE-2016-9715

Ibm » Infosphere Master Data Management Server » Version: 11.0

cpe:2.3:a:ibm:infosphere_master_data_management_server:11.0
Ibm » Infosphere Master Data Management Server » Version: 11.3

cpe:2.3:a:ibm:infosphere_master_data_management_server:11.3
Ibm » Infosphere Master Data Management Server » Version: 11.4

cpe:2.3:a:ibm:infosphere_master_data_management_server:11.4
Ibm » Infosphere Master Data Management Server » Version: 11.5

cpe:2.3:a:ibm:infosphere_master_data_management_server:11.5
Ibm » Infosphere Master Data Management Server » Version: 11.6

cpe:2.3:a:ibm:infosphere_master_data_management_server:11.6

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-9715

Products

Pricing

Contact Us