Fortinet Discovers IBM Infosphere BigInsights Cross-Site Scripting Vulnerability II
Fortinet's FortiGuard Labs has discovered a cross-site scripting vulnerability in IBM Infosphere BigInsights.
IBM InfoSphere BigInsights is an analytics platform, based on open source Apache Hadoop, for analyzing massive volumes of unconventional data in its native format. The software enables advanced analysis and modeling of diverse data, and supports structured, semi-structured and unstructured content to provide maximum flexibility.
SolutionsFortiGuard Labs released the following FortiGate IPS signature which covers this specific vulnerability:
Released Jul 08, 2016
Users should apply the solution provided by IBM.
Fortinet reported the vulnerability to IBM on May 18, 2016.
IBM confirmed the vulnerability on Jun. 28, 2016.
IBM patched the vulnerability on Jan. 23, 2017.
This vulnerability was discovered by Honggang Ren of Fortinet's FortiGuard Labs.