← Back

CVE-2016-8967

nvd nist
Published: Feb 1, 2017Modified: May 13, 2026

JSON object

Loading...
5.5
Vector
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Exploitability: 1.8 / Impact: 3.6
Source: NVD

Description

IBM BigFix Inventory v9 9.2 stores user credentials in plain in clear text which can be read by a local user.

Affected (2)

Ibm
2 products
License Metric Tool
Bigfix Inventory
Configuration A
1 vulnerable · 5 platform
Vulnerable SoftwareAffected Versions
License Metric Tool
Version 9.2.0
Running on/withPlatform Versions
Hp
Hp Ux
All versions
Ibm
Aix
All versions
Linux
Linux Kernel
All versions
Microsoft
Windows
All versions
Oracle
Solaris
All versions
Configuration B
1 vulnerable
Vulnerable SoftwareAffected Versions
Bigfix Inventory
Version 9.2

Related CWEs

CWE-255
CWE-255

References (4)

Source: psirt@us.ibm.com
MitigationVendor Advisory
Source: psirt@us.ibm.com
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
MitigationVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry

Timeline

No history available yet.