Open Redirect Vulnerability in IBM Tealeaf Customer Experience
CVE-2016-5977

6.8MEDIUM

Key Information:

Vendor

IBM
Status
Tealeaf Customer Experience
Vendor
CVE Published:
26 September 2016

What is CVE-2016-5977?

A vulnerability present in the IBM Tealeaf Customer Experience web portal allows remote authenticated users to exploit the system and redirect users to arbitrary websites. This can facilitate phishing attacks, posing significant risks to user security. The vulnerability exists in several versions, leading to potential exposures that could impact both users and organizations leveraging IBM's product.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www-01.ibm.com/support/docview.wss?uid=swg21990216
x_refsource_CONFIRM
http://www.securityfocus.com/bid/93139
vdb-entryx_refsource_BID

CVSS V3.1

Score:
6.8
Severity:
MEDIUM
Confidentiality:
None
Integrity:
High
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
Required
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.