XML External Entity (XXE) Vulnerability in IBM Financial Transaction Manager (FTM) for ACH, Check, and Corporate Payment Services

XML External Entity (XXE) Vulnerability in IBM Financial Transaction Manager (FTM) for ACH, Check, and Corporate Payment Services

CVE-2016-0268 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

XML external entity (XXE) vulnerability in IBM Financial Transaction Manager (FTM) for ACH Services for Multi-Platform 2.1.1.2 and 3.0.0.x before fp0013, Financial Transaction Manager (FTM) for Check Services for Multi-Platform 2.1.1.2 and 3.0.0.x before fp0013, and Financial Transaction Manager (FTM) for Corporate Payment Services (CPS) for Multi-Platform 2.1.1.2 and 3.0.0.x before fp0013 allows remote authenticated users to obtain sensitive information via crafted XML data. IBM X-Force ID: 110915.

Learn more about our Cis Benchmark Audit For Ibm I.