CVE-2016-0329 Information
Feb 14, 2021
cve
Description
Open redirect vulnerability in IBM Emptoris Sourcing 10.0.0.x before 10.0.0.1_iFix3 10.0.1.x before 10.0.1.3_iFix3 10.0.2.x before 10.0.2.8_iFix1 10.0.4.0 before 10.0.4.0_iFix8 and 10.1.0.0 before 10.1.0.0_iFix3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors. IBM X-Force ID: 111692.
CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Reference
http://www-01.ibm.com/support/docview.wss?uid=swg21982629 https://exchange.xforce.ibmcloud.com/vulnerabilities/111692 ibm-emptoris-cve20160329-url-redirect(111692)
Attack Complexity
LOW
Privileges Required
LOW
User Interaction Required
LOW
Scope
REQUIRED
Confidentiality Impact
CHANGED
Integrity Impact
LOW
Availability Impact
LOW
Base Score
NONE
Base Severity
5.4
Share on: