PT-2016-4093 · Ibm · Ibm Cloud Orchestrator

Published

2016-10-16

·

Updated

2018-05-02

·

CVE-2016-0204

CVSS v3.1

6.8

Medium

VectorAV:N/AC:L/PR:L/UI:R/S:C/C:N/I:H/A:N
Name of the Vulnerable Software and Affected Versions IBM Cloud Orchestrator versions 2.4.x before 2.4.0 FP3
Description The issue allows remote authenticated users to redirect users to arbitrary web sites and conduct phishing attacks.
Recommendations For IBM Cloud Orchestrator versions 2.4.x before 2.4.0 FP3, update to version 2.4.0 FP3 or later to resolve the issue.

Fix

Open Redirect

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-601

Related Identifiers

CVE-2016-0204

Affected Products

Ibm Cloud Orchestrator