XML External Entity (XXE) Vulnerability in IBM Financial Transaction Manager (FTM) for ACH, Check, and Corporate Payment Services
CVE-2016-0268 · MEDIUM Severity
AV:N/AC:L/AU:S/C:P/I:N/A:N
XML external entity (XXE) vulnerability in IBM Financial Transaction Manager (FTM) for ACH Services for Multi-Platform 2.1.1.2 and 3.0.0.x before fp0013, Financial Transaction Manager (FTM) for Check Services for Multi-Platform 2.1.1.2 and 3.0.0.x before fp0013, and Financial Transaction Manager (FTM) for Corporate Payment Services (CPS) for Multi-Platform 2.1.1.2 and 3.0.0.x before fp0013 allows remote authenticated users to obtain sensitive information via crafted XML data. IBM X-Force ID: 110915.
Learn more about our Cis Benchmark Audit For Ibm I.