CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-2016-6084
https://notcve.org/view.php?id=CVE-2016-6084
IBM BigFix Platform could allow an attacker on the local network to crash the BES server using a specially crafted XMLSchema request. IBM BigFix Platform podría permitir a un atacante en la red local tirar el servidor BES utilizando una petición XMLSchema especialmente manipulada. • http://www.ibm.com/support/docview.wss?uid=swg21996339 http://www.securityfocus.com/bid/95286 • CWE-20: Improper Input Validation •
CVSS: 8.1EPSS: 0%CPEs: 4EXPL: 0CVE-2016-0396
https://notcve.org/view.php?id=CVE-2016-0396
IBM Tivoli Endpoint Manager could allow a user under special circumstances to inject commands that would be executed with unnecessary higher privileges than expected. IBM Tivoli Endpoint Manager podrían permitir a un usuario en circunstancias especiales inyectar comandos que sería ejecutado con privilegios superiores innecesarios de lo esperado. • http://www.ibm.com/support/docview.wss?uid=swg21993206 http://www.securityfocus.com/bid/94155 • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •