Open Redirect Vulnerability in IBM FileNet Workplace
CVE-2016-5878

6.8MEDIUM

Key Information:

Vendor: IBM
Status: Filenet Workplace
Vendor: CVE Published:; 8 August 2016

Summary

An open redirect flaw exists in IBM FileNet Workplace versions prior to 4.0.2.14, which enables remote authenticated users to manipulate the application, sending victims to arbitrary external websites. This vulnerability can be exploited through different vectors, posing risks such as phishing attacks that could compromise user information and security.

References

http://www.securityfocus.com/bid/92279

vdb-entryx_refsource_BID

http://www-01.ibm.com/support/docview.wss?uid=swg21987721

x_refsource_CONFIRM

CVSS V3.1

Score:

6.8

Severity:

MEDIUM

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Changed

Timeline

Vulnerability published
Aug 8, 2016
Vulnerability Reserved
Jun 29, 2016