CVE-2016-8967

CWE-2554 documents4 sources
Severity
5.5MEDIUM
EPSS
0.0%
top 85.90%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
IBM Corporation Bigfix InventoryIBM Bigfix InventoryIBM License Metric Tool
Timeline
PublishedFeb 1
Latest updateMay 17

Description

IBM BigFix Inventory v9 9.2 stores user credentials in plain in clear text which can be read by a local user.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 1.8 | Impact: 3.6

Affected Packages3 packages

🔴Vulnerability Details

2
GHSA
GHSA-jxmv-ww7v-4c8f: IBM BigFix Inventory v9 92022-05-17
CVEList
CVE-2016-8967: IBM BigFix Inventory v9 92017-02-01

💬Community

1
Bugzilla
CVE-2015-8967 kernel: arm64: Strict page permission bypass2016-12-13