3 matches found
Security Bulletin: Vulnerability has been identified in IBM Cloud Orchestrator teamwork API (CVE-2016-0206 )
Summary A potential denial of service vulnerability has been identified in IBM Cloud Orchestrator teamwork executeServiceByName API if an invalid URL is provided by local authenticated user. IBM Cloud Orchestrator, formerly known as IBM SmartCloud Orchestrator has addressed the issue. Vulnerabili...
CVE-2016-0206
IBM Cloud Orchestrator could allow a local authenticated attacker to cause the server to slow down for a short period of time by using a specially crafted and malformed URL...
CVE-2016-0206
CVE-2016-0206 affects IBM Cloud Orchestrator; a local authenticated attacker could slow the server by using a specially crafted malformed URL to the teamwork executeServiceByName API. Affected versions include V2.3, V2.3.0.1, V2.4, V2.4.0.1, V2.4.0.2. IBM lists a fix in Fix Pack 3 (2.4.0.3) or la...