CVE-2016-5996
published 2016-09-26CVE-2016-5996: The web portal in IBM Tealeaf Customer Experience before 8.7.1.8847 FP10, 8.8 before 8.8.0.9049 FP9, 9.0.0 and 9.0.1 before 9.0.1.1117 FP5, 9.0.1A before…
high7.5CVSS 3.0
AVNACLPRNUINSUCHINAN
The web portal in IBM Tealeaf Customer Experience before 8.7.1.8847 FP10, 8.8 before 8.8.0.9049 FP9, 9.0.0 and 9.0.1 before 9.0.1.1117 FP5, 9.0.1A before 9.0.1.5108_9.0.1A FP5, 9.0.2 before 9.0.2.1223 FP3, and 9.0.2A before 9.0.2.5224_9.0.2A FP3 does not enforce password-length restrictions, which makes it easier for remote attackers to obtain access via a brute-force attack.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | tealeaf_customer_experience | <= 8.7 | — |
| ibm | tealeaf_customer_experience | — | — |
| ibm | tealeaf_customer_experience | — | — |
| ibm | tealeaf_customer_experience | — | — |
| ibm | tealeaf_customer_experience | — | — |
| ibm | tealeaf_customer_experience | — | — |
| ibm | tealeaf_customer_experience | — | — |