High severity7.5NVD Advisory· Published Nov 25, 2016· Updated May 6, 2026
CVE-2016-0319
CVE-2016-0319
Description
The XML parser in Lifecycle Query Engine (LQE) in IBM Jazz Reporting Service 6.0 and 6.0.1 before 6.0.1 iFix006 allows remote authenticated administrators to read arbitrary files or cause a denial of service via an XML document containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- www-01.ibm.com/support/docview.wssnvdPatchVendor Advisory
- www.securityfocus.com/bid/92475nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.