CVE-2016-5950

EUVD-2016-6884
IBM Kenexa LCMS Premier on Cloud stores user credentials in plain in clear text which can be read by an authenticated user.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.5 MEDIUM
NETWORK
LOW
LOW
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 48%
Affected Products (NVD)
VendorProductVersion
ibmkenexa_lcms_premier
9.0
ibmkenexa_lcms_premier
9.1
ibmkenexa_lcms_premier
9.2
ibmkenexa_lcms_premier
9.2.1
ibmkenexa_lcms_premier
9.3
ibmkenexa_lcms_premier
9.4
ibmkenexa_lcms_premier
9.5
ibmkenexa_lcms_premier
10.0
ibmkenexa_lcms_premier
10.1
ibmkenexa_lcms_premier
10.2
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.ibm.com/support/docview.wss?uid=swg21992067
http://www.securityfocus.com/bid/94387
http://www.ibm.com/support/docview.wss?uid=swg21992067
http://www.securityfocus.com/bid/94387