Medium severity4.3NVD Advisory· Published Feb 1, 2017· Updated Jun 17, 2026
CVE-2016-5898
CVE-2016-5898
Description
IBM Jazz Reporting Service (JRS) could allow a remote attacker to obtain sensitive information, caused by not restricting JSON serialization. By sending a direct request, an attacker could exploit this vulnerability to obtain sensitive information.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
8cpe:2.3:a:ibm:jazz_reporting_service:5.0:*:*:*:*:*:*:*+ 6 more
- cpe:2.3:a:ibm:jazz_reporting_service:5.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:jazz_reporting_service:5.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:jazz_reporting_service:5.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:jazz_reporting_service:6.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:jazz_reporting_service:6.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:jazz_reporting_service:6.0.2:*:*:*:*:*:*:*
- (no CPE)
- IBM Corporation/Jazz Reporting Servicev5Range: 6
Patches
Vulnerability mechanics
References
2- www.ibm.com/support/docview.wssnvdPatchVendor Advisory
- www.securityfocus.com/bid/94848nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.