CVE-2016-5933

IBM Tivoli Monitoring 6.2 and 6.3 is vulnerable to possible host header injection attack that could lead to HTTP cache poisoning or firewall bypass. IBM Reference #: 1997223.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
4.6 MEDIUM
NETWORK
LOW
LOW
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
ibmCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 43%
VendorProductVersion
ibmtivoli_monitoring
6.2.2
ibmtivoli_monitoring
6.2.2.2
ibmtivoli_monitoring
6.2.2.3
ibmtivoli_monitoring
6.2.2.4
ibmtivoli_monitoring
6.2.2.5
ibmtivoli_monitoring
6.2.2.6
ibmtivoli_monitoring
6.2.2.7
ibmtivoli_monitoring
6.2.2.8
ibmtivoli_monitoring
6.2.2.9
ibmtivoli_monitoring
6.2.3
ibmtivoli_monitoring
6.2.3.1
ibmtivoli_monitoring
6.2.3.2
ibmtivoli_monitoring
6.2.3.3
ibmtivoli_monitoring
6.2.3.4
ibmtivoli_monitoring
6.2.3.5
ibmtivoli_monitoring
6.3.0
ibmtivoli_monitoring
6.3.0.1
ibmtivoli_monitoring
6.3.0.2
ibmtivoli_monitoring
6.3.0.3
ibmtivoli_monitoring
6.3.0.4
ibmtivoli_monitoring
6.3.0.5
ibmtivoli_monitoring
6.3.0.6
ibmtivoli_monitoring
6.3.0.7
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.ibm.com/support/docview.wss?uid=swg21997223
http://www.ibm.com/support/docview.wss?uid=swg21997223