Security Advisory

CVE-2016-9693

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2017-03-07 17:00:00

Last updated 2024-08-06 02:59:03

Assigner ibm

State PUBLISHED

Description

IBM Business Process Manager 7.5, 8.0, and 8.5 has a file download capability that is vulnerable to a set of attacks. Ultimately, an attacker can cause an unauthenticated victim to download a malicious payload. An existing file type restriction can be bypassed so that the payload might be considered executable and cause damage on the victims machine. IBM Reference #: 1998655.

← Browse all CVEs View on cve.org ↗