3 matches found
Security Bulletin: IBM InfoSphere MDM Reference Data Management affected by XML External Entity vulnerability(CVE-2015-1909)
Summary IBM MDM InfoSphere Reference Data Management is vulnerable to XML External Entity attack caused by weakly configured XML parser. Vulnerability Details CVEID: CVE-2015-1909 DESCRIPTION: IBM InfoSphere Master Data Management Server could allow a remote attacker to obtain sensitive...
CVE-2015-1909
The XML parser in the Reference Data Management component in the server in IBM InfoSphere Master Data Management MDM 10.1 before IF1, 11.0 before FP3, 11.3, and 11.4 before FP2 allows remote attackers to read arbitrary files, and consequently obtain administrative access, via an external entity...
CVE-2015-1909
IBM InfoSphere MDM Reference Data Management is vulnerable to an XML External Entity (XXE) attack due to a weakly configured XML parser. Affected are the Reference Data Management server components for versions: 10.1 before IF1, 11.0 before FP3, 11.3, and 11.4 before FP2. Exploitation could allow...