CVE-2016-2928
MEDIUMIBM Bigfix Remote Control < 9.1.2 - Log Information Exposure
Title source: ruleDescription
IBM BigFix Remote Control before 9.1.3 allows remote authenticated users to obtain sensitive information by reading error logs.
Scores
CVSS v3
4.3
EPSS
0.0018
EPSS Percentile
39.8%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Classification
CWE
CWE-532
Status
published
Affected Products (2)
ibm/bigfix_remote_control
< 9.1.2
n/a/n/a
Timeline
Published
Nov 25, 2016
Tracked Since
Feb 18, 2026