CVE-2016-6112

Published: May 22, 2017Modified: May 13, 2026

8.8

Vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.8 / Impact: 5.9

Source: NVD

Description

IBM Distributed Marketing and Marketing Platform 8.6, 9.0, 9.1, and 10.0 could allow an authenticated user to escalate their privileges and gain administrative permissions over the web application. IBM X-Force ID: 118282.

Affected (13)

Products: Ibm: Marketing Platform, Marketing Operations, Distributed Marketing

Ibm

3 products

Marketing Platform

Marketing Operations

Distributed Marketing

Configuration A

5 vulnerable

Vulnerable Software	Affected Versions
Ibm Marketing Platform	Version 10.0
Ibm Marketing Platform	Version 8.6.0.0
Ibm Marketing Platform	Version 9.0.0.0
Ibm Marketing Platform	Version 9.1.0.0
Ibm Marketing Platform	Version 9.1.2.0

Configuration B

4 vulnerable

Vulnerable Software	Affected Versions
Ibm Marketing Operations	Version 10.0.0.0
Ibm Marketing Operations	Version 8.6.0.0
Ibm Marketing Operations	Version 9.0.0.0
Ibm Marketing Operations	Version 9.1.0.0

Configuration C

4 vulnerable

Vulnerable Software	Affected Versions
Ibm Distributed Marketing	Version 10.0.0.0
Ibm Distributed Marketing	Version 8.6.0.0
Ibm Distributed Marketing	Version 9.0.0.0
Ibm Distributed Marketing	Version 9.1.0.0

Related CWEs

CWE-264

References (2)

http://www.ibm.com/support/docview.wss?uid=swg21992739

Source: psirt@us.ibm.com

Vendor Advisory

http://www.ibm.com/support/docview.wss?uid=swg21992739

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.