CVE-2016-8912

Severity

4.3MEDIUM

EPSS

0.2%

top 63.64%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedFeb 1

Latest updateMay 17

Description

IBM Kenexa LMS on Cloud 13.1 and 13.2 - 13.2.4 stores potentially sensitive information in in log files that could be read by an authenticated user.

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:NExploitability: 2.8 | Impact: 1.4

GHSA

GHSA-q642-pw99-8mx6: IBM Kenexa LMS on Cloud 13↗2022-05-17

▶

CVEList

CVE-2016-8912: IBM Kenexa LMS on Cloud 13↗2017-02-01

▶