CVE-2016-9717

Sažetak

HTTP Parameter Override is identified in the IBM Infosphere Master Data Management (MDM) 10.1. 11.0. 11.3, 11.4, 11.5, and 11.6 product. It enables attackers by exposing the presence of duplicated parameters which may produce an anomalous behavior in the application that can be potentially exploited.

Reference

http://www.ibm.com/support/docview.wss?uid=swg22006605
http://www.securityfocus.com/bid/100074
https://exchange.xforce.ibmcloud.com/vulnerabilities/119730

CVSS

Base:	4.0
Impact:	2.9
Exploitability:	8.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	PARTIAL	NONE

CVSS vektor

AV:N/AC:L/Au:S/C:N/I:P/A:N

Zadnje važnije ažuriranje

03-08-2017 - 15:56

Objavljeno

31-07-2017 - 21:29