VYPR
Medium severity5.3NVD Advisory· Published Feb 1, 2017· Updated Jun 17, 2026

CVE-2016-8977

CVE-2016-8977

Description

IBM BigFix Inventory v9 could disclose sensitive information to an unauthorized user using HTTP GET requests. This information could be used to mount further attacks against the system.

Affected products

4
  • cpe:2.3:a:ibm:bigfix_inventory:9.2:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:ibm:bigfix_inventory:9.2:*:*:*:*:*:*:*
    • (no CPE)
  • cpe:2.3:a:ibm:license_metric_tool:9.2.0:*:*:*:*:*:*:*
  • IBM Corporation/BigFix Inventoryv5
    Range: unspecified

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.