CVE-2016-9044

Summary

An exploitable command execution vulnerability exists in Information Builders WebFOCUS Business Intelligence Portal 8.1 . A specially crafted web parameter can cause a command injection. An authenticated attacker can send a crafted web request to trigger this vulnerability.

Affected Software

VendorProductVersion RangeStatus
Information BuildersWebFOCUSWebFOCUS Business Intelligence Portal 8.1affected

Weaknesses

  • command injection

ADP Enrichment

CVE Program Container

Additional References

References