CVE-2016-9717
N/A
N/A
Summary
HTTP Parameter Override is identified in the IBM Infosphere Master Data Management (MDM) 10.1. 11.0. 11.3, 11.4, 11.5, and 11.6 product. It enables attackers by exposing the presence of duplicated parameters which may produce an anomalous behavior in the application that can be potentially exploited.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| IBM | InfoSphere Master Data Management | 10.1 | affected |
| IBM | InfoSphere Master Data Management | 11.0 | affected |
| IBM | InfoSphere Master Data Management | 11.3 | affected |
| IBM | InfoSphere Master Data Management | 11.4 | affected |
| IBM | InfoSphere Master Data Management | 10.1.0 | affected |
| IBM | InfoSphere Master Data Management | 11.0.0 | affected |
| IBM | InfoSphere Master Data Management | 11.5 | affected |
| IBM | InfoSphere Master Data Management | 11.6 | affected |
Weaknesses
- Gain Access
ADP Enrichment
CVE Program Container
Additional References
- http://www.securityfocus.com/bid/100074
- http://www.ibm.com/support/docview.wss?uid=swg22006605
- https://exchange.xforce.ibmcloud.com/vulnerabilities/119730
References
- http://www.securityfocus.com/bid/100074
- http://www.ibm.com/support/docview.wss?uid=swg22006605
- https://exchange.xforce.ibmcloud.com/vulnerabilities/119730
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.