CVE-2016-9717

Summary

HTTP Parameter Override is identified in the IBM Infosphere Master Data Management (MDM) 10.1. 11.0. 11.3, 11.4, 11.5, and 11.6 product. It enables attackers by exposing the presence of duplicated parameters which may produce an anomalous behavior in the application that can be potentially exploited.

Affected Software

VendorProductVersion RangeStatus
IBMInfoSphere Master Data Management10.1affected
IBMInfoSphere Master Data Management11.0affected
IBMInfoSphere Master Data Management11.3affected
IBMInfoSphere Master Data Management11.4affected
IBMInfoSphere Master Data Management10.1.0affected
IBMInfoSphere Master Data Management11.0.0affected
IBMInfoSphere Master Data Management11.5affected
IBMInfoSphere Master Data Management11.6affected

Weaknesses

  • Gain Access

ADP Enrichment

CVE Program Container

Additional References

References