CVE-2016-5968

Name of the Vulnerable Software and Affected Versions IBM Tealeaf Customer Experience versions 8.x through 8.7.1.8847 FP9 IBM Tealeaf Customer Experience versions 8.8.x through 8.8.0.9048 IBM Tealeaf Customer Experience version 9.0.0 IBM Tealeaf Customer Experience versions 9.0.1 through 9.0.1.1116 IBM Tealeaf Customer Experience versions 9.0.1A through 9.0.1.5107 IBM Tealeaf Customer Experience versions 9.0.2 through 9.0.2.1222 IBM Tealeaf Customer Experience versions 9.0.2A through 9.0.2.5223

Description The issue allows remote attackers to conduct Server-Side Request Forgery (SSRF) attacks. SSRF is a type of attack where an attacker can trick a server into making requests to internal or external resources, potentially leading to unauthorized access or information disclosure.

Recommendations For IBM Tealeaf Customer Experience versions 8.x through 8.7.1.8847 FP9, update to version 8.7.1.8847 FP10. For IBM Tealeaf Customer Experience versions 8.8.x through 8.8.0.9048, update to version 8.8.0.9049 FP9. For IBM Tealeaf Customer Experience version 9.0.0, update to version 9.0.1.1117 FP5 or later. For IBM Tealeaf Customer Experience versions 9.0.1 through 9.0.1.1116, update to version 9.0.1.1117 FP5. For IBM Tealeaf Customer Experience versions 9.0.1A through 9.0.1.5107, update to version 9.0.1.5108 FP5. For IBM Tealeaf Customer Experience versions 9.0.2 through 9.0.2.1222, update to version 9.0.2.1223 FP3. For IBM Tealeaf Customer Experience versions 9.0.2A through 9.0.2.5223, update to version 9.0.2.5224 FP3.