VYPR
High severity7.1NVD Advisory· Published Mar 1, 2017· Updated Jun 17, 2026

CVE-2016-9994

CVE-2016-9994

Description

IBM Kenexa LCMS Premier on Cloud 9.0, and 10.0.0 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM Reference #: 1976805.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

10
  • cpe:2.3:a:ibm:kenexa_lcms_premier:10.0:*:*:*:*:*:*:*+ 8 more
    • cpe:2.3:a:ibm:kenexa_lcms_premier:10.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:kenexa_lcms_premier:9.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:kenexa_lcms_premier:9.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:kenexa_lcms_premier:9.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:kenexa_lcms_premier:9.2.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:kenexa_lcms_premier:9.3:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:kenexa_lcms_premier:9.4:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:kenexa_lcms_premier:9.5:*:*:*:*:*:*:*
    • (no CPE)range: 9.0, 10.0.0
  • IBM Corporation/Kenexa LCMS Premier on Cloudv5
    Range: unspecified

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.