CVE-2016-0296

low-risk

Published 2017-02-01

IBM Tivoli Endpoint Manager - Mobile Device Management (MDM) stores potentially sensitive information in log files that could be available to a local user.

Do I need to act?

0.05% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 3.3/10 Low

LOCAL / LOW complexity

Affected Products (4)

Bigfix Platform

Affected Vendors

Ibm

References (4)

Patch http://www.ibm.com/support/docview.wss?uid=swg21993213

Third Party Advisory http://www.securityfocus.com/bid/94213

Patch http://www.ibm.com/support/docview.wss?uid=swg21993213

Third Party Advisory http://www.securityfocus.com/bid/94213

/ 100

low-risk

Severity 13/34 · Low

Exploitability 0/34 · Minimal

Exposure 10/34 · Low