CVE-2016-6087

CWE-20Improper Input Validation3 documents3 sources
Severity
9.8CRITICAL
EPSS
1.4%
top 19.32%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Domino
Timeline
PublishedJun 7
Latest updateMay 13

Description

IBM Domino 8.5 and 9.0 could allow an attacker to steal credentials using multiple sessions and large amounts of data using Domino TLS Key Exchange validation. IBM X-Force ID: 117918.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages2 packages

CVEListV5ibm/domino5 versions+4
NVDibm/domino27 versions+26

Patches

Patch: www.ibm.comPatch: www.ibm.com

🔴Vulnerability Details

2
GHSA
GHSA-7c64-986h-xrf6: IBM Domino 82022-05-13
CVEList
CVE-2016-6087: IBM Domino 82017-06-07
CVE-2016-6087 (CRITICAL CVSS 9.8) | IBM Domino 8.5 and 9.0 could allow | cvebase.io