CVE-2016-6018

Name of the Vulnerable Software and Affected Versions IBM Emptoris Contract Management versions 10.0 through 10.1

Description The issue reveals detailed error messages in certain features, which could allow an attacker to gain additional information and conduct further attacks.

Recommendations For versions 10.0 and 10.1, consider restricting access to features that reveal detailed error messages until a fix is available. As a temporary workaround, consider disabling or limiting the display of detailed error messages to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.