IBM InfoSphere Information Server 11.3, 11.5, and 11.7 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 150905.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm infosphere_information_server 11.3 |
||
ibm infosphere_information_server 11.5 |
||
ibm infosphere_information_server 11.7 |
||
ibm infosphere_governance_catalog 11.3 |
||
ibm infosphere_governance_catalog 11.5 |
||
ibm infosphere_governance_catalog 11.7 |
||
ibm infosphere_information_server_on_cloud 11.5 |
||
ibm infosphere_information_server_on_cloud 11.7 |
||
ibm infosphere_information_server_business_glossary 9.1 |
||
ibm infosphere_information_server_metadata_workbench 9.1 |