CyberSec.Space Logo
Back to CVE Browser

CVE-2016-6082

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0990%
EPSS Percentile4.53th
PublishedFeb 1, 2017
Last ModifiedMay 13, 2026

Vulnerability Description

IBM BigFix Platform could allow a remote attacker to execute arbitrary code on the system, caused by a use-after-free race condition. An attacker could exploit this vulnerability to execute arbitrary code on the system.

Affected Platforms (CPE)

πŸ“¦
Ibm

Bigfix Platform

= 9.0
πŸ“¦
Ibm

Bigfix Platform

= 9.1
πŸ“¦
Ibm

Bigfix Platform

= 9.2
πŸ“¦
Ibm

Bigfix Platform

= 9.5

References & Advisories

πŸ”— http://www.ibm.com/support/docview.wss?uid=swg21996375
πŸ”— http://www.securityfocus.com/bid/95297
πŸ”— http://www.ibm.com/support/docview.wss?uid=swg21996375
πŸ”— http://www.securityfocus.com/bid/95297

Related Vulnerabilities

CVE-2018-14759.8

IBM BigFix Platform 9.2 and 9.5 uses an inadequate account lockout setting that could allow a remote attacker to brute force accou...

CVE-2019-40139.0

IBM BigFix Platform 9.5 could allow any authenticated user to upload any file to any location on the server with root privileges. ...

CVE-2018-14798.8

IBM BigFix Platform 9.2 and 9.5 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and...

CVE-2016-02918.8

IBM BigFix Platform 9.0, 9.1 before 9.1.8, and 9.2 before 9.2.8 allow remote authenticated users to execute arbitrary commands by ...