CVE-2016-5878

{"id": "CVE-2016-5878", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "[email protected]", "cvssData": {"version": "2.0", "baseScore": 4.9, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:S/C:P/I:P/A:N", "authentication": "SINGLE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 4.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 6.8, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}], "cvssMetricV30": [{"type": "Primary", "source": "[email protected]", "cvssData": {"scope": "CHANGED", "version": "3.0", "baseScore": 6.8, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:N/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 4.0, "exploitabilityScore": 2.3}]}, "published": "2016-08-08T01:59:18.587", "references": [{"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21987721", "tags": ["Patch", "Vendor Advisory"], "source": "[email protected]"}, {"url": "http://www.securityfocus.com/bid/92279", "source": "[email protected]"}, {"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21987721", "tags": ["Patch", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/92279", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "[email protected]", "description": [{"lang": "en", "value": "CWE-601"}]}], "descriptions": [{"lang": "en", "value": "Open redirect vulnerability in IBM FileNet Workplace 4.0.2 before 4.0.2.14 allows remote authenticated users to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors."}, {"lang": "es", "value": "Vulnerabilidad de redirecci\u00f3n abierta en IBM FileNet Workplace 4.0.2 en versiones anteriores a 4.0.2.14 permite a usuarios remotos autenticados redirigir usuarios a sitios web arbitrarios y llevar a cabo ataques phishing a trav\u00e9s de vectores no especificados."}], "lastModified": "2025-04-12T10:46:40.837", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ibm:filenet_workplace:4.0.2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1777E00D-F3A8-4F1E-AC08-023192EEAED3"}, {"criteria": "cpe:2.3:a:ibm:filenet_workplace:4.0.2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0669E5B1-25CD-4799-81C6-81F7D6C66F7F"}, {"criteria": "cpe:2.3:a:ibm:filenet_workplace:4.0.2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BCCC4086-2A13-42E8-A49F-2D9ABDF66A5E"}, {"criteria": "cpe:2.3:a:ibm:filenet_workplace:4.0.2.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B3CFF11C-ABF5-4B98-96FD-FFF3F1A34945"}, {"criteria": "cpe:2.3:a:ibm:filenet_workplace:4.0.2.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FE9679C4-74C1-4C66-A7BD-C2EF3E1CE468"}, {"criteria": "cpe:2.3:a:ibm:filenet_workplace:4.0.2.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B3914004-6A8B-4CC5-817F-489375BA79AC"}, {"criteria": "cpe:2.3:a:ibm:filenet_workplace:4.0.2.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DA121075-BFF4-4E4A-9A40-06F781C53F53"}, {"criteria": "cpe:2.3:a:ibm:filenet_workplace:4.0.2.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "49C23741-5A3B-43D6-8523-F0AAAF8B16BB"}, {"criteria": "cpe:2.3:a:ibm:filenet_workplace:4.0.2.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "70863AB4-7E04-430B-9591-2ACE85BD3DE9"}, {"criteria": "cpe:2.3:a:ibm:filenet_workplace:4.0.2.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6BFCA212-FE6C-4D02-8B73-09E4829CF161"}, {"criteria": "cpe:2.3:a:ibm:filenet_workplace:4.0.2.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "868FB17A-BB34-4B42-ADD4-DD40C2FCEE77"}, {"criteria": "cpe:2.3:a:ibm:filenet_workplace:4.0.2.11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3B86E0D0-1EB5-4DEA-88B8-E46FAD87511E"}, {"criteria": "cpe:2.3:a:ibm:filenet_workplace:4.0.2.12:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4E16D97D-5528-4493-994A-EFFEB8B2D94F"}, {"criteria": "cpe:2.3:a:ibm:filenet_workplace:4.0.2.13:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2D790B3C-2A95-4A56-969A-BAA7037D7DE7"}], "operator": "OR"}]}], "sourceIdentifier": "[email protected]"}