CVE-2016-9710

Summary

IBM Predictive Solutions Foundation (formerly PMQ) could allow a remote attacker to include arbitrary files. A remote attacker could send a specially-crafted URL to specify a file from the local system, which could allow the attacker to obtain sensitive information. IBM X-Force ID: 119618.

Affected Software

VendorProductVersion RangeStatus
IBMCognos Business Intelligence10.1.1affected
IBMCognos Business Intelligence10.2affected
IBMCognos Business Intelligence10.2.1affected
IBMCognos Business Intelligence10.2.1.1affected
IBMCognos Business Intelligence10.2.2affected

Weaknesses

  • Obtain Information

ADP Enrichment

CVE Program Container

Additional References

References