Description
IBM BigFix Inventory v9 could disclose sensitive information to an unauthorized user using HTTP GET requests. This information could be used to mount further attacks against the system.
Affected products
- IBM Corporation / BigFix Inventoryunspecified – unspecified
- IBM Corporation / BigFix Inventory9.2 – 9.2