IBM Security Bulletin: Multiple vulnerabilities in IBM Leads (CVE-2015-0127, CVE-2015-0126, CVE-2015-0115, CVE-2015-0131, CVE-2015-0116)
|
Información sobre el sistema
|
|
|
Software afectado |
IBM |
Descripción
|
IBM Leads is susceptible to Phishing through Frames, Cross Site Scripting, Cross Site Request Forgery, File Upload, Link Injection vulnerabilities. CVE(s): CVE-2015-0127, CVE-2015-0126, CVE-2015-0115, CVE-2015-0131 and CVE-2015-0116 Affected product(s) and affected version(s): IBM Leads versions 7.x, 8.1.0, 8.2, 8.5.0, 8.6.0, 9.0.0, 9.1.0 and 9.1.1. Refer to the following reference URLs for remediation and additional vulnerability details: Source Bulletin:
More info:
https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_multiple_vulnerabilities_in_ibm_leads_cve_2015_0127_cve_2015_0126_cve_2015_0115_cve_2015_0131_cve_2015_0116?lang=en_us |
Identificadores estándar
|
Propiedad |
Valor |
CVE |
CVE-2015-0127 ,CVE-2015-0126 ,CVE-2015-0115 ,CVE-2015-0131 ,CVE-2015-0116 ,CVE-2014-8730 and CVE-2015-4000. |