Vulnerability Details CVE-2016-9716
IBM InfoSphere Master Data Management Server 11.0, 11.3, 11.4, 11.5, and 11.6 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 119729.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 39.4%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 6.8
References
- http://www.ibm.com/support/docview.wss?uid=swg22006610
- http://www.securityfocus.com/bid/100026
- https://exchange.xforce.ibmcloud.com/vulnerabilities/119729
- http://www.ibm.com/support/docview.wss?uid=swg22006610
- http://www.securityfocus.com/bid/100026
- https://exchange.xforce.ibmcloud.com/vulnerabilities/119729
Products affected by CVE-2016-9716
-
cpe:2.3:a:ibm:infosphere_master_data_management_server:11.0
-
cpe:2.3:a:ibm:infosphere_master_data_management_server:11.3
-
cpe:2.3:a:ibm:infosphere_master_data_management_server:11.4
-
cpe:2.3:a:ibm:infosphere_master_data_management_server:11.5
-
cpe:2.3:a:ibm:infosphere_master_data_management_server:11.6