Vulnerabilities > CVE-2016-5949 - 7PK - Security Features vulnerability in IBM Kenexa Lcms Premier

047910
CVSS 4.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
LOW
Integrity impact
NONE
Availability impact
NONE
network
low complexity
ibm
CWE-254

Summary

IBM Kenexa LCMS Premier on Cloud could allow an authenticated user to obtain sensitive user data with a specially crafted HTTP request.

Common Weakness Enumeration (CWE)