CVE-2017-1225 in Tivoli Endpoint Managerinfo

Summary

IBM Tivoli Endpoint Manager (IBM BigFix Platform 9.2 and 9.5) stores sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referrer header or browser history. IBM X-Force ID: 123904.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Reservation

11/30/2016

Disclosure

10/26/2017

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

IDVulnerabilityCWEExpCouCVE
108636IBM Tivoli Endpoint Manager URL History information disclosure200Not definedOfficial fixCVE-2017-1225

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

PreviousOverviewNext

Do you need the next level of professionalism?

Upgrade your account now!