IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4 before 3.4.2.4, and 3.5 before 3.5.0.2 allows remote authenticated users to conduct server-side request forgery (SSRF) attacks, and trigger network traffic to arbitrary intranet or Internet hosts, via a crafted proxy request to a web service.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
http://www-01.ibm.com/support/docview.wss?uid=swg21980749 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: ibm
Published: 2016-07-01T01:00:00
Updated: 2024-08-05T22:15:24.350Z
Reserved: 2015-12-08T00:00:00
Link: CVE-2016-0362
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2016-07-01T01:59:00.137
Modified: 2016-08-11T13:36:50.797
Link: CVE-2016-0362
Redhat
No data.