CVE-2017-1219 in Tivoli Endpoint Managerinfo

Summary

IBM Tivoli Endpoint Manager is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 123859.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservation

11/30/2016

Disclosure

07/19/2017

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
104096	IBM Tivoli Endpoint Manager XML Data xml external entity reference	611	Not defined	Official fix	CVE-2017-1219

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

MITRE
NVD
CVE Details

◂ PreviousOverviewNext ▸