IBM Rhapsody DM 4.0, 5.0 and 6.0 is vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error when processing XML data. A remote attacker could exploit this vulnerability to expose highly sensitive information or consume all available memory resources. IBM Reference #: 1997798.
References
Link | Resource |
---|---|
http://www.ibm.com/support/docview.wss?uid=swg21997798 | Patch Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: ibm
Published: 2017-02-23T16:00:00
Updated: 2017-02-23T15:57:01
Reserved: 2016-10-25T00:00:00
Link: CVE-2016-8974
JSON object: View
NVD Information
Status : Analyzed
Published: 2017-02-23T16:59:00.233
Modified: 2017-03-02T16:19:09.697
Link: CVE-2016-8974
JSON object: View
Redhat Information
No data.
CWE