← back
CVE-2016-3039

CVE-2016-3039

EPSS 2.1%
IBM Traveler 8.x and 9.x before 9.0.1.12 allows remote authenticated users to read arbitrary files or cause a denial of service (memory consumption) via XML data containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://www-01.ibm.com/support/docview.wss?uid=swg1LO89357http://www-01.ibm.com/support/docview.wss?uid=swg21985858http://www.securityfocus.com/bid/91796