CVE-2016-2989

Severity CVSS v4.0:
Pending analysis
Type:
CWE-284 Improper Access Control
Publication date:
08/08/2016
Last modified:
12/04/2025

Description

Open redirect vulnerability in the Connections Portlets component 5.x before 5.0.2 for IBM WebSphere Portal allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:ibm:connections_portlets:5.0:*:*:*:*:websphere_portal:*:*