CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-9994

IBM Kenexa LCMS Premier on Cloud 9.0, and 10.0.0 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM Reference #: 1976805.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 38.1%

CVSS Severity

CVSS v3 Score 7.1

CVSS v2 Score 6.5

References

Products affected by CVE-2016-9994

Ibm » Kenexa Lcms Premier » Version: 10.0

cpe:2.3:a:ibm:kenexa_lcms_premier:10.0
Ibm » Kenexa Lcms Premier » Version: 9.0

cpe:2.3:a:ibm:kenexa_lcms_premier:9.0
Ibm » Kenexa Lcms Premier » Version: 9.1

cpe:2.3:a:ibm:kenexa_lcms_premier:9.1
Ibm » Kenexa Lcms Premier » Version: 9.2

cpe:2.3:a:ibm:kenexa_lcms_premier:9.2
Ibm » Kenexa Lcms Premier » Version: 9.2.1

cpe:2.3:a:ibm:kenexa_lcms_premier:9.2.1
Ibm » Kenexa Lcms Premier » Version: 9.3

cpe:2.3:a:ibm:kenexa_lcms_premier:9.3
Ibm » Kenexa Lcms Premier » Version: 9.4

cpe:2.3:a:ibm:kenexa_lcms_premier:9.4
Ibm » Kenexa Lcms Premier » Version: 9.5

cpe:2.3:a:ibm:kenexa_lcms_premier:9.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-9994

Products

Pricing

Contact Us