CVE-2017-1107

IBM Marketing Platform 9.1.0, 9.1.2, 10.0, and 10.1 exposes sensitive information in the headers that could be used by an authenticated attacker in further attacks against the system. IBM X-Force ID: 120906.
References
Link Resource
http://www.securityfocus.com/bid/108918 Broken Link Third Party Advisory VDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/120906 VDB Entry Vendor Advisory
https://www.ibm.com/support/docview.wss?uid=ibm10887815 Broken Link Patch Vendor Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:ibm:marketing_platform:9.1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_platform:9.1.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_platform:10.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_platform:10.1:*:*:*:*:*:*:*

History

No history.

Information

Published : 2019-06-19 14:15

Updated : 2024-02-04 20:20


NVD link : CVE-2017-1107

Mitre link : CVE-2017-1107

CVE.ORG link : CVE-2017-1107


JSON object : View

Products Affected

ibm

  • marketing_platform
CWE
CWE-200

Exposure of Sensitive Information to an Unauthorized Actor