CVE-2016-2995 in Connectionsinfo

Zusammenfassung

von MITRE

Cross-site scripting (XSS) vulnerability in the Web UI in IBM Connections 4.0 through CR4, 4.5 through CR5, 5.0 before CR4, and 5.5 before CR1 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2016-2997, CVE-2016-3005, and CVE-2016-3010.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservieren

09.03.2016

Veröffentlichung

01.09.2016

Moderieren

akzeptiert

Eintrag

VDB-91027

CPE

bereit

CWE

CWE-79 (bestätigt)

CVSS

5.4 (NVD)

EPSS

0.00199

KEV

nein

Aktivitäten

very low

Sektor

Hospital, Education, ...

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-2995
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-2995
CVE Details	https://www.cvedetails.com/cve/CVE-2016-2995/

◂ Zurück Übersicht Weiter ▸

Might our Artificial Intelligence support you?

Check our Alexa App!