CVE-2016-5938

CWE-200Information Exposure3 documents3 sources
Severity
3.3LOW
EPSS
0.1%
top 82.59%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
IBM Corporation Kenexa LMS ON CloudIBM Kenexa LMS
Timeline
PublishedFeb 1
Latest updateMay 17

Description

IBM Kenexa LMS on Cloud allows web pages to be stored locally which can be read by another user on the system.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:NExploitability: 1.8 | Impact: 1.4

Affected Packages2 packages

CVEListV5ibm_corporation/kenexa_lms_on_cloud9 versions+8
NVDibm/kenexa_lms8 versions+7

Patches

Patch: www.ibm.comPatch: www.ibm.com

🔴Vulnerability Details

2
GHSA
GHSA-736f-7x7w-xw4g: IBM Kenexa LMS on Cloud allows web pages to be stored locally which can be read by another user on the system2022-05-17
CVEList
CVE-2016-5938: IBM Kenexa LMS on Cloud allows web pages to be stored locally which can be read by another user on the system2017-02-01