CVE-2016-9044

Name of the Vulnerable Software and Affected Versions Information Builders WebFOCUS Business Intelligence Portal version 8.1

Description A command execution issue exists due to a specially crafted web parameter that can cause command injection. An authenticated attacker can exploit this by sending a crafted web request.

Recommendations For version 8.1, consider restricting access to vulnerable web parameters to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.