CVE-2016-8977
published 2017-02-01CVE-2016-8977: IBM BigFix Inventory v9 could disclose sensitive information to an unauthorized user using HTTP GET requests. This information could be used to mount further…
medium5.3CVSS 3.0
AVNACLPRNUINSUCLINAN
IBM BigFix Inventory v9 could disclose sensitive information to an unauthorized user using HTTP GET requests. This information could be used to mount further attacks against the system.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | bigfix_inventory | — | — |
| ibm | license_metric_tool | — | — |
| ibm_corporation | bigfix_inventory | — | — |
| ibm_corporation | bigfix_inventory | — | — |