Miembros de
Boletines de Vulnerabilidades |
IBM Security Bulletin: Multiple vulnerabilities in IBM Leads (CVE-2015-0127, CVE-2015-0126, CVE-2015-0115, CVE-2015-0131, CVE-2015-0116) |
|
Información sobre el sistema |
|
| Software afectado | IBM |
Descripción |
|
|
IBM Leads is susceptible to Phishing through Frames, Cross Site Scripting, Cross Site Request Forgery, File Upload, Link Injection vulnerabilities. CVE(s): CVE-2015-0127, CVE-2015-0126, CVE-2015-0115, CVE-2015-0131 and CVE-2015-0116 Affected product(s) and affected version(s): IBM Leads versions 7.x, 8.1.0, 8.2, 8.5.0, 8.6.0, 9.0.0, 9.1.0 and 9.1.1. Refer to the following reference URLs for remediation and additional vulnerability details: Source Bulletin: More info: https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_multiple_vulnerabilities_in_ibm_leads_cve_2015_0127_cve_2015_0126_cve_2015_0115_cve_2015_0131_cve_2015_0116?lang=en_us |
|
Identificadores estándar |
|
| Propiedad | Valor |
| CVE | CVE-2015-0127 ,CVE-2015-0126 ,CVE-2015-0115 ,CVE-2015-0131 ,CVE-2015-0116 ,CVE-2014-8730 and CVE-2015-4000. |
Histórico de versiones |
||
| Versión | Comentario | Fecha |
| 1.0 | Advisory issued | 2015-06-24 |