Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2016-0268

Опубликовано: 09 мар. 2018
Источник: nvd
CVSS3: 4.3
CVSS2: 4
EPSS Низкий

Описание

XML external entity (XXE) vulnerability in IBM Financial Transaction Manager (FTM) for ACH Services for Multi-Platform 2.1.1.2 and 3.0.0.x before fp0013, Financial Transaction Manager (FTM) for Check Services for Multi-Platform 2.1.1.2 and 3.0.0.x before fp0013, and Financial Transaction Manager (FTM) for Corporate Payment Services (CPS) for Multi-Platform 2.1.1.2 and 3.0.0.x before fp0013 allows remote authenticated users to obtain sensitive information via crafted XML data. IBM X-Force ID: 110915.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:ibm:financial_transaction_manager:*:*:*:*:*:ach_services:*:*
Версия от 3.0.0.0 (включая) до 3.0.0.12 (включая)
cpe:2.3:a:ibm:financial_transaction_manager:*:*:*:*:*:check_services:*:*
Версия от 3.0.0.0 (включая) до 3.0.0.12 (включая)
cpe:2.3:a:ibm:financial_transaction_manager:*:*:*:*:*:cps_services:*:*
Версия от 3.0.0.0 (включая) до 3.0.0.12 (включая)
cpe:2.3:a:ibm:financial_transaction_manager:2.1.1.2:*:*:*:*:ach_services:*:*
cpe:2.3:a:ibm:financial_transaction_manager:2.1.1.2:*:*:*:*:check_services:*:*
cpe:2.3:a:ibm:financial_transaction_manager:2.1.1.2:*:*:*:*:cps_services:*:*

EPSS

Процентиль: 41%
0.00188
Низкий

4.3 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-611

Связанные уязвимости

github логотип

GHSA-m3gm-54m7-pc78

CVSS3: 4.3
github
больше 3 лет назад

XML external entity (XXE) vulnerability in IBM Financial Transaction Manager (FTM) for ACH Services for Multi-Platform 2.1.1.2 and 3.0.0.x before fp0013, Financial Transaction Manager (FTM) for Check Services for Multi-Platform 2.1.1.2 and 3.0.0.x before fp0013, and Financial Transaction Manager (FTM) for Corporate Payment Services (CPS) for Multi-Platform 2.1.1.2 and 3.0.0.x before fp0013 allows remote authenticated users to obtain sensitive information via crafted XML data. IBM X-Force ID: 110915.

EPSS

Процентиль: 41%
0.00188
Низкий

4.3 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-611