CVE-2016-5979

Name of the Vulnerable Software and Affected Versions IBM Distributed Marketing versions 8.6 through 10.0

Description The issue allows a privileged authenticated user to create an instance with a security profile that is not valid for the templates. This results in the new instance not being accessible to the intended user.

Recommendations For versions 8.6 through 10.0, consider restricting the creation of new instances to prevent unauthorized access until a fix is available. As a temporary workaround, review and manually adjust the security profiles of newly created instances to ensure they are accessible to the intended users.