exploitDog

GHSA-4grf-x53v-r95x

Опубликовано: 03 мая 2024

Источник: github

Github: Не прошло ревью

CVSS3: 5.3

Описание

IBM Cognos Controller 10.4.1, 10.4.2, and 11.0.0 could allow a remote user to enumerate usernames due to differentiating error messages on existing usernames. IBM X-Force ID: 199181.

IBM Cognos Controller 10.4.1, 10.4.2, and 11.0.0 could allow a remote user to enumerate usernames due to differentiating error messages on existing usernames. IBM X-Force ID: 199181.

Ссылки

EPSS

Процентиль: 21%

0.00068

Низкий

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-203

CWE-204

Связанные уязвимости

CVE-2021-20556

CVSS3: 5.3

nvd

почти 2 года назад

IBM Cognos Controller 10.4.1, 10.4.2, and 11.0.0 could allow a remote user to enumerate usernames due to differentiating error messages on existing usernames. IBM X-Force ID: 199181.

EPSS

Процентиль: 21%

0.00068

Низкий

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-203

CWE-204