CVE-2016-6083
https://notcve.org/view.php?id=CVE-2016-6083
IBM Tivoli Monitoring V6 could allow an unauthenticated user to access SOAP queries that could contain sensitive information. IBM X-Force ID: 117696. IBM Tivoli Monitoring V6 podría permitir a un usuario no autenticado acceder a consultas SOAP que podrían contener información confidencial. IBM X-Force ID: 117696. • http://www.ibm.com/support/docview.wss?uid=swg22000909 http://www.securityfocus.com/bid/99259 https://exchange.xforce.ibmcloud.com/vulnerabilities/117696 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVE-2016-5933
https://notcve.org/view.php?id=CVE-2016-5933
IBM Tivoli Monitoring 6.2 and 6.3 is vulnerable to possible host header injection attack that could lead to HTTP cache poisoning or firewall bypass. IBM Reference #: 1997223. IBM Tivoli Monitoring 6.2 y 6.3 es vulnerable a posibles ataques de inyección de encabezado de host que podría conducir a envenenamiento de caché HTTP o elusión del firewall. Referencia IBM #: 1997223. • http://www.ibm.com/support/docview.wss?uid=swg21997223 • CWE-254: 7PK - Security Features •