← back
CVE-2016-6104

CVE-2016-6104

EPSS 2.7%
IBM Tivoli Key Lifecycle Manager 2.5, and 2.6 could allow a remote attacker to upload arbitrary files, caused by the improper validation of file extensions, which could allow the attacker to execute arbitrary code on the vulnerable system.
Affected products
IBM Corporation · Key Lifecycle Manager

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://www.ibm.com/support/docview.wss?uid=swg21997988http://www.securityfocus.com/bid/95980