CVE-2016-8949
published 2017-08-09CVE-2016-8949: IBM Emptoris Supplier Lifecycle Management 10.0.x and 10.1.x could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By…
medium5.4CVSS 3.0
AVNACLPRLUIRSCCLILAN
IBM Emptoris Supplier Lifecycle Management 10.0.x and 10.1.x could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability to spoof the URL displayed to redirect a user to a malicious Web site that would appear to be trusted. This could allow the attacker to obtain highly sensitive information or conduct further attacks against the victim. IBM X-Force ID: 118836.
Affected
67 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | emptoris_strategic_supply_management | — | — |
| ibm | emptoris_strategic_supply_management | — | — |
| ibm | emptoris_strategic_supply_management | — | — |
| ibm | emptoris_strategic_supply_management | — | — |
| ibm | emptoris_strategic_supply_management | — | — |
| ibm | emptoris_strategic_supply_management | — | — |
| ibm | emptoris_strategic_supply_management | — | — |
| ibm | emptoris_strategic_supply_management | — | — |
| ibm | emptoris_strategic_supply_management | — | — |
| ibm | emptoris_strategic_supply_management | — | — |
| ibm | emptoris_strategic_supply_management | — | — |
| ibm | emptoris_strategic_supply_management | — | — |
| ibm | emptoris_strategic_supply_management | — | — |
| ibm | emptoris_strategic_supply_management | — | — |
| ibm | emptoris_strategic_supply_management | — | — |
| ibm | emptoris_strategic_supply_management | — | — |
| ibm | emptoris_strategic_supply_management | — | — |
| ibm | emptoris_strategic_supply_management | — | — |
| ibm | emptoris_strategic_supply_management | — | — |
| ibm | emptoris_strategic_supply_management | — | — |
| ibm | emptoris_strategic_supply_management | — | — |
| ibm | emptoris_strategic_supply_management | — | — |
| ibm | emptoris_strategic_supply_management | — | — |
| ibm | emptoris_strategic_supply_management | — | — |
| ibm | emptoris_strategic_supply_management | — | — |
CVSS provenance
nvdv3.05.4MEDIUMCVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
osv9.8CRITICAL