2 matches found
Security Bulletin: Multiple vulnerabilities addressed in IBM Emptoris Strategic Supply Management (CVE-2016-6021, CVE-2016-6029, CVE-2017-1190)
Summary The security bulletin includes multiple vulnerabilities found and addressed in IBM Emptoris Strategic Supply Management across various versions of the product. Vulnerability Details CVEID: CVE-2016-6021 DESCRIPTION: IBM Emptoris Strategic Supply Management Platform is vulnerable to...
CVE-2016-6029
CVE-2016-6029 affects IBM Emptoris Strategic Supply Management Platform 10.0.0.x through 10.1.1.x. The root cause is failure to properly enable HTTP Strict Transport Security, enabling an information disclosure risk where an attacker could obtain sensitive data via man-in-the-middle. The IBM bull...