CVE-2016-8977

Name of the Vulnerable Software and Affected Versions IBM BigFix Inventory version 9

Description The issue could disclose sensitive information to an unauthorized user using HTTP GET requests, potentially allowing for further attacks against the system.

Recommendations For IBM BigFix Inventory version 9, consider restricting access to sensitive information and limiting the use of HTTP GET requests until a fix is available. As a temporary workaround, restrict access to the system to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.