CVE-2016-0214

Severity CVSS v4.0:
Pending analysis
Type:
CWE-284 Improper Access Control
Publication date:
08/02/2017
Last modified:
20/04/2025

Description

IBM Tivoli Endpoint Manager could allow a remote attacker to upload arbitrary files. A remote attacker could exploit this vulnerability to upload a malicious file. The only way that file would be executed would be through a phishing attack to trick an unsuspecting victim to execute the file.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:ibm:bigfix_platform:9.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:bigfix_platform:9.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:bigfix_platform:9.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:bigfix_platform:9.5:*:*:*:*:*:*:*