CVE-2016-0214
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2016-0214
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
IBM Tivoli Endpoint Manager could allow a remote attacker to upload arbitrary files. A remote attacker could exploit this vulnerability to upload a malicious file. The only way that file would be executed would be through a phishing attack to trick an unsuspecting victim to execute the file.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
IBM BigFix Platform 任意文件上传漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
IBM BigFix(前称IBM Endpoint Manager,Tivoli Endpoint Manager)是美国IBM公司的一套系统管理软件。该软件提供远程控制、补丁管理、软件分发、操作系统部署、网络访问保护等功能。 IBM BigFix Platform中存在任意文件上传漏洞。攻击者可利用该漏洞上传恶意的文件,执行任意代码。以下版本受到影响:IBM BigFix Platform 9.0,9.1,9.2,9.5。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| IBM Corporation | BigFix Platform | 9.0 | - |
II. Public POCs for CVE-2016-0214
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2016-0214
请登录查看更多情报信息。
- http://www.ibm.com/support/docview.wss?uid=swg21993203x_refsource_CONFIRM
- https://nvd.nist.gov/vuln/detail/CVE-2016-0214
Same Patch Batch · IBM Corporation · 2017-02-08 · 25 CVEs total
| CVE-2016-5900 | IBM Tealeaf Customer Experience on Cloud Network Capture Add-On 安全漏洞 | |
| CVE-2017-1128 | IBM Rational Requirements Composer和Rational DOORS Next Generation 跨站脚本漏洞 | |
| CVE-2017-1127 | IBM Rational Requirements Composer和Rational DOORS Next Generation 跨站脚本漏洞 | |
| CVE-2016-9748 | IBM Rational DOORS Next Generation和Rational Requirements Composer 信息泄露漏洞 | |
| CVE-2016-6032 | IBM Rational Team Concert 跨站脚本漏洞 | |
| CVE-2016-2866 | IBM Jazz Team Server 安全漏洞 | |
| CVE-2015-5013 | IBM Security Access Manager 信息泄露漏洞 | |
| CVE-2016-9005 | IBM TS3100和TS3200 Tape库安全漏洞 | |
| CVE-2016-8954 | IBM dashDB Local 安全漏洞 | |
| CVE-2016-5934 | IBM Tivoli Storage Manager 本地任意代码执行漏洞 | |
| CVE-2016-5918 | IBM Tivoli Storage Manager HSM for Windows 本地信息泄露漏洞 | |
| CVE-2016-5902 | IBM Maximo Asset Management 跨站脚本漏洞 | |
| CVE-2015-1976 | IBM Tivoli Directory Server和Security Directory Server 安全漏洞 | |
| CVE-2016-0310 | IBM Connections 主机头注入漏洞 | |
| CVE-2016-0308 | IBM Connections 安全绕过漏洞 | |
| CVE-2016-0307 | IBM Connections 远程信息泄露漏洞 | |
| CVE-2016-0305 | IBM Connections 跨站脚本漏洞 | |
| CVE-2016-0210 | IBM Sterling B2B Integrator 信息泄露漏洞 | |
| CVE-2016-0206 | IBM Cloud Orchestrator 安全漏洞 | |
| CVE-2016-0203 | IBM Cloud Orchestrator和IBM SmartCloud Orchestrator 信息泄露漏洞 |
Showing top 20 of 25 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same product: BigFix Platform
- CVE-2026-21767
HCL BigFix Platform is affected by insufficient authenticati - CVE-2026-21765
HCL BigFix Platform is affected by insecure permissions on p - CVE-2024-30117
HCL BigFix Platform is affected by a DLL Hijack vulnerabilit - CVE-2024-23556
HCL BigFix Platform is impacted by a failure to restrict SSL - CVE-2024-23554
HCL BigFix Platform is susceptible to Cross-Site Request For
V. Comments for CVE-2016-0214
No comments yet