EUVD-2016-7058

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

IBM Kenexa LMS on Cloud 13.1 to 13.2.4 vulnerable to remote file upload and code execution.

Reporter	Title	Published	Views	Family All 6
IBM Security Bulletins	Security Bulletin: Multiple security vulnerabilities have been addressed in LMS 5.0 on Cloud	17 Jun 201822:23	–	ibm
CNVD	IBM Kenexa LMS on Cloud Arbitrary File Upload Vulnerability	15 Nov 201600:00	–	cnvd
CVE	CVE-2016-6124	1 Feb 201720:00	–	cve
Cvelist	CVE-2016-6124	1 Feb 201720:00	–	cvelist
NVD	CVE-2016-6124	1 Feb 201720:59	–	nvd
Prion	Code injection	1 Feb 201720:59	–	prion

[
  {
    "enisaIdVendor": [
      {
        "id": "30f9fbde-7a54-3886-9033-20f19affbc28",
        "vendor": {
          "name": "IBM Corporation"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "1abbe26b-b412-3d18-8f3f-1f12dd3c5531",
        "product": {
          "name": "Kenexa LMS on Cloud"
        },
        "product_version": "13.1"
      },
      {
        "id": "1b77e7a6-10cf-3f05-a190-774677420dda",
        "product": {
          "name": "Kenexa LMS on Cloud"
        },
        "product_version": "13.2.4"
      },
      {
        "id": "7ffc9f3a-d4f7-363e-82c0-8bada7c77442",
        "product": {
          "name": "Kenexa LMS on Cloud"
        },
        "product_version": "13.0"
      },
      {
        "id": "b2e514ea-81f8-3555-a2e0-3e988c626d02",
        "product": {
          "name": "Kenexa LMS on Cloud"
        },
        "product_version": "13.2.3"
      },
      {
        "id": "beb146c5-6ca8-35d7-b432-6c151a69aa08",
        "product": {
          "name": "Kenexa LMS on Cloud"
        },
        "product_version": "13.2"
      },
      {
        "id": "e81fea7c-3aa0-3cfc-a147-5e9fdc29eace",
        "product": {
          "name": "Kenexa LMS on Cloud"
        },
        "product_version": "14.0.0"
      },
      {
        "id": "eb367b02-1c92-3c1f-a88f-5cff882bf35d",
        "product": {
          "name": "Kenexa LMS on Cloud"
        },
        "product_version": "14.2.0"
      },
      {
        "id": "f73480d8-0964-3982-b3c0-de7d65ee3f4f",
        "product": {
          "name": "Kenexa LMS on Cloud"
        },
        "product_version": "13.2.2"
      },
      {
        "id": "f91f0617-d5e5-3c73-aeab-49694351758c",
        "product": {
          "name": "Kenexa LMS on Cloud"
        },
        "product_version": "14.1.0"
      }
    ]
  }
]

Source	Link
ibm	www.ibm.com/support/docview.wss
securityfocus	www.securityfocus.com/bid/94306
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

8.8High risk

Vulners AI Score8.8

CVSS 38.8

CVSS 26.5

EPSS0.02673