CVE-2016-8918

Description

IBM Integration Bus, under non default configurations, could allow a remote user to authenticate without providing valid credentials.

Affected products

• IBM Corporation / Integration Bus9.0.0.0 – 9.0.0.0
• IBM Corporation / Integration Bus9.0 – 9.0
• IBM Corporation / Integration Bus10 – 10
• IBM Corporation / Integration Bus10.0 – 10.0
• IBM Corporation / Integration Bus9 – 9

References

• MISChttp://www.ibm.com/support/docview.wss?uid=swg21995079
• MISChttp://www.securityfocus.com/bid/94644