IBM BigFix Inventory v9 Vulnerability: Unauthorized Disclosure of Sensitive Information via HTTP GET Requests

IBM BigFix Inventory v9 Vulnerability: Unauthorized Disclosure of Sensitive Information via HTTP GET Requests

CVE-2016-8977 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

IBM BigFix Inventory v9 could disclose sensitive information to an unauthorized user using HTTP GET requests. This information could be used to mount further attacks against the system.

Learn more about our User Device Pen Test.