CVE-2016-6112

CWE-2643 documents3 sources
Severity
8.8HIGH
EPSS
0.3%
top 42.60%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
IBM Corporation Marketing PlatformIBM Distributed MarketingIBM Marketing Operations+1 more
Timeline
PublishedMay 22
Latest updateMay 17

Description

IBM Distributed Marketing and Marketing Platform 8.6, 9.0, 9.1, and 10.0 could allow an authenticated user to escalate their privileges and gain administrative permissions over the web application. IBM X-Force ID: 118282.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages4 packages

NVDibm/marketing_platform5 versions+4
NVDibm/distributed_marketing4 versions+3
CVEListV5ibm_corporation/marketing_platform8.0, 8.1, 8.2, 8.3, 8.5, 8.6, 9.0, 9.1, 9.1.1, 9.1.2, 10.0
NVDibm/marketing_operations4 versions+3

🔴Vulnerability Details

2
GHSA
GHSA-63qr-c54j-6569: IBM Distributed Marketing and Marketing Platform 82022-05-17
CVEList
CVE-2016-6112: IBM Distributed Marketing and Marketing Platform 82017-05-22
CVE-2016-6112 (HIGH CVSS 8.8) | IBM Distributed Marketing and Marke | cvebase.io