Public CVE-2016-3022 disclosure

IBM Security Access Manager for Web could allow an unauthenticated user to gain access to sensitive information by entering invalid file names.