Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBMB4F80DBC92D8836D65DC8F724577F39DF234D8E00922C156B2E8A6B2AA145F7F
HistoryJun 17, 2018 - 10:23 p.m.

Security Bulletin: Multiple security vulnerabilities have been addressed in LMS 5.0 on Cloud

2018-06-1722:23:21
www.ibm.com
6

0.009 Low

EPSS

Percentile

82.8%

JSON

Summary

Multiple security vulnerabilities have been addressed in LMS 5.0 on Cloud

Vulnerability Details

CVEID: CVE-2016-6126**
DESCRIPTION:** IBM Kenexa LMS on Cloud could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing “dot dot” sequences (/…/) to view arbitrary files on the system.
CVSS Base Score: 6.5
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/118388 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N)

CVEID: CVE-2016-8920**
DESCRIPTION:** IBM Kenexa LMS on Cloud is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
CVSS Base Score: 5.4
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/118530 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N)

CVEID: CVE-2016-6124**
DESCRIPTION:** IBM Kenexa LMS on Cloud could allow a remote attacker to upload arbitrary files, which could allow the attacker to execute arbitrary code on the vulnerable Web server.
CVSS Base Score: 8.8
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/118386 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)

CVEID: CVE-2016-8913**
DESCRIPTION:** IBM Kenexa LMS on Cloud could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing “dot dot” sequences (/…/) to view arbitrary files on the system.
CVSS Base Score: 6.5
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/118391 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N)

CVEID: CVE-2016-6123**
DESCRIPTION:** IBM Kenexa LMS on Cloud is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
CVSS Base Score: 5.4
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/118385 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N)

CVEID: CVE-2016-8912**
DESCRIPTION:** IBM Kenexa LMS on Cloud stores potentially sensitive information in in log files that could be read by an authenticated user.
CVSS Base Score: 4.3
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/118390 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N)

CVEID: CVE-2016-8911**
DESCRIPTION:** IBM Kenexa LMS on Cloud could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim’s click actions and possibly launch further attacks against the victim.
CVSS Base Score: 5.4
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/118389 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N)

CVEID: CVE-2016-6125**
DESCRIPTION:** IBM Kenexa LMS on Cloud is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
CVSS Base Score: 5.4
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/118387 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N)

CVEID: CVE-2016-6122**
DESCRIPTION:** IBM Kenexa LMS on Cloud discloses answers to security questions in a response to authenticated users.
CVSS Base Score: 4.3
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/118384 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N)

Affected Products and Versions

4.1, 4.2, 4.2.2, 4.2.3, 4.2.4

Remediation/Fixes

These issues have been addressed in LMS 5.0 on Cloud. IBM recommends updating to the latest release.

Workarounds and Mitigations

Customers who are using an affected version should visit IBM Support Portal and open a Service Request (SR) to request an upgrade to latest fixed release.

<https://www-947.ibm.com/support/entry/portal&gt;

Related

cve 9
cvelist 9
prion 9
nvd 9
cve
cve
CVE-2016-8913
2017-02-01 20:59:02
CVE-2016-8911
2017-02-01 20:59:02
CVE-2016-6124
2017-02-01 20:59:02
cvelist
cvelist
CVE-2016-8913
2017-02-01 20:00:00
CVE-2016-6124
2017-02-01 20:00:00
CVE-2016-6125
2017-02-01 20:00:00
prion
prion
Design/Logic Flaw
2017-02-01 20:59:00
Design/Logic Flaw
2017-02-01 20:59:00
Cross site scripting
2017-02-01 20:59:00
nvd
nvd
CVE-2016-8913
2017-02-01 20:59:02
CVE-2016-6122
2017-02-01 20:59:02
CVE-2016-8911
2017-02-01 20:59:02

0.009 Low

EPSS

Percentile

82.8%

JSON
Related for B4F80DBC92D8836D65DC8F724577F39DF234D8E00922C156B2E8A6B2AA145F7F
cve9cvelist9prion9nvd9