CVE-2016-0228

Published on: 04/17/2017 12:00:00 AM UTC

Last Modified on: 03/23/2021 11:27:13 PM UTC

CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Certain versions of Marketing Platform from Ibm contain the following vulnerability:

IBM Marketing Platform 10.0 could allow a remote attacker to conduct phishing attacks, caused by an open redirect vulnerability in various scripts. An attacker could exploit this vulnerability to redirect a victim to arbitrary Web sites. IBM X-Force ID: 110236.

  • CVE-2016-0228 has been assigned by [email protected] to track the vulnerability - currently rated as MEDIUM severity.
  • Affected Vendor/Software: IBM Corporation - Marketing Platform version 10.0

CVSS3 Score: 5.4 - MEDIUM

Attack
Vector
Attack
Complexity
Privileges
Required
User
Interaction
NETWORK LOW LOW REQUIRED
Scope Confidentiality
Impact
Integrity
Impact
Availability
Impact
CHANGED LOW LOW NONE

CVSS2 Score: 4.9 - MEDIUM

Access
Vector
Access
Complexity
Authentication
NETWORK MEDIUM SINGLE
Confidentiality
Impact
Integrity
Impact
Availability
Impact
PARTIAL PARTIAL NONE

CVE References

Description Tags Link
IBM notice: The page you requested cannot be displayed Patch
Vendor Advisory
www.ibm.com
text/html
Inactive LinkNot Archived
URL Logo CONFIRM www.ibm.com/support/docview.wss?uid=swg22001952
IBM Marketing Platform CVE-2016-0228 Open Redirect Vulnerability Third Party Advisory
VDB Entry
cve.report (archive)
text/html
URL Logo BID 97670

Known Affected Configurations (CPE V2.3)

Type Vendor Product Version Update Edition Language
ApplicationIbmMarketing Platform10.0AllAllAll
ApplicationIbmMarketing Platform10.0AllAllAll
  • cpe:2.3:a:ibm:marketing_platform:10.0:*:*:*:*:*:*:*:
  • cpe:2.3:a:ibm:marketing_platform:10.0:*:*:*:*:*:*:*: