Open Redirect Vulnerability in IBM Emptoris Sourcing Products
CVE-2016-0329

5.4MEDIUM

Key Information:

Vendor
IBM
Vendor
CVE Published:
2 February 2018

Summary

IBM Emptoris Sourcing has a vulnerability that allows remote attackers to redirect users to arbitrary web websites. This flaw can be exploited through various unspecified vectors, potentially enabling phishing attacks that compromise user security. It affects several versions of the product, making timely updates essential for safeguarding user data and maintaining secure transactions.

References

CVSS V3.1

Score:
5.4
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
Required
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.