Open Redirect Vulnerability in IBM FileNet Workplace
CVE-2016-5878

6.8MEDIUM

Key Information:

Vendor

IBM
Status
Filenet Workplace
Vendor
CVE Published:
8 August 2016

What is CVE-2016-5878?

An open redirect flaw exists in IBM FileNet Workplace versions prior to 4.0.2.14, which enables remote authenticated users to manipulate the application, sending victims to arbitrary external websites. This vulnerability can be exploited through different vectors, posing risks such as phishing attacks that could compromise user information and security.

References

http://www.securityfocus.com/bid/92279
vdb-entryx_refsource_BID
http://www-01.ibm.com/support/docview.wss?uid=swg21987721
x_refsource_CONFIRM

CVSS V3.1

Score:
6.8
Severity:
MEDIUM
Confidentiality:
None
Integrity:
High
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
Required
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.