CVE-2016-5878

Open redirect vulnerability in IBM FileNet Workplace 4.0.2 before 4.0.2.14 allows remote authenticated users to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
Open Redirect
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.8 MEDIUM
NETWORK
LOW
LOW
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:N/I:H/A:N
ibmCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 31%
VendorProductVersion
ibmfilenet_workplace
4.0.2.0
ibmfilenet_workplace
4.0.2.1
ibmfilenet_workplace
4.0.2.2
ibmfilenet_workplace
4.0.2.3
ibmfilenet_workplace
4.0.2.4
ibmfilenet_workplace
4.0.2.5
ibmfilenet_workplace
4.0.2.6
ibmfilenet_workplace
4.0.2.7
ibmfilenet_workplace
4.0.2.8
ibmfilenet_workplace
4.0.2.9
ibmfilenet_workplace
4.0.2.10
ibmfilenet_workplace
4.0.2.11
ibmfilenet_workplace
4.0.2.12
ibmfilenet_workplace
4.0.2.13
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www-01.ibm.com/support/docview.wss?uid=swg21987721
http://www.securityfocus.com/bid/92279
http://www-01.ibm.com/support/docview.wss?uid=swg21987721
http://www.securityfocus.com/bid/92279