Remote Code Execution Vulnerability in IBM Tealeaf Customer Experience
CVE-2016-2983
8.1HIGH
Summary
An identified vulnerability in IBM Tealeaf Customer Experience versions 8.7, 8.8, and 9.0.2 may permit remote attackers under specific conditions to access sensitive operational data or interfere with TLS session states for ongoing connections, leading to potential denial of service and security bypassing opportunities. This vulnerability requires immediate attention to prevent exploitation.
Affected Version(s)
Tealeaf Customer Experience 9.0.2
Tealeaf Customer Experience 8.7
Tealeaf Customer Experience 8.8
References
CVSS V3.1
Score:
8.1
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved