Vulnerabilities > CVE-2016-0274 - 7PK - Security Features vulnerability in IBM Financial Transaction Manager

CVSS 3.5 - LOW

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

SINGLE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

ibm

CWE-254

NVD

Published: 2018-03-09

Updated: 2018-03-26

Summary

IBM Financial Transaction Manager (FTM) for ACH Services for Multi-Platform 2.1.1.2 and 3.0.0.x before fp0013, Financial Transaction Manager (FTM) for Check Services for Multi-Platform 2.1.1.2 and 3.0.0.x before fp0013, and Financial Transaction Manager (FTM) for Corporate Payment Services (CPS) for Multi-Platform 2.1.1.2 and 3.0.0.x before fp0013 allows remote attackers to conduct clickjacking attacks via a crafted web site. IBM X-Force ID: 111076.

Vulnerable Configurations

Part	Description	Count
Application	Ibm IBM Financial Transaction Manager 2.1.1.2 IBM Financial Transaction Manager 3.0.0.0 IBM Financial Transaction Manager 3.0.0.1 IBM Financial Transaction Manager 3.0.0.2 IBM Financial Transaction Manager 3.0.0.3 IBM Financial Transaction Manager 3.0.0.4 IBM Financial Transaction Manager 3.0.0.5 IBM Financial Transaction Manager 3.0.0.6 IBM Financial Transaction Manager 3.0.0.7 IBM Financial Transaction Manager 3.0.0.8 IBM Financial Transaction Manager 3.0.0.9 IBM Financial Transaction Manager 3.0.0.10 IBM Financial Transaction Manager 3.0.0.11 IBM Financial Transaction Manager 3.0.0.12	42

Common Weakness Enumeration (CWE)

CWE-254 - 7PK - Security Features

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References