exploitDog

GHSA-hxv9-v8xj-vcr2

Опубликовано: 20 дек. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.3

Описание

IBM Financial Transaction Manager 3.2.4 authorization checks are done incorrectly for some HTTP requests which allows getting unauthorized technical information (e.g. event log entries) about the FTM SWIFT system. IBM X-Force ID: 239708.

IBM Financial Transaction Manager 3.2.4 authorization checks are done incorrectly for some HTTP requests which allows getting unauthorized technical information (e.g. event log entries) about the FTM SWIFT system. IBM X-Force ID: 239708.

Ссылки

EPSS

Процентиль: 34%

0.00139

Низкий

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-863

Связанные уязвимости

CVE-2022-43872

CVSS3: 5.3

nvd

около 3 лет назад

IBM Financial Transaction Manager 3.2.4 authorization checks are done incorrectly for some HTTP requests which allows getting unauthorized technical information (e.g. event log entries) about the FTM SWIFT system. IBM X-Force ID: 239708.

EPSS

Процентиль: 34%

0.00139

Низкий

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-863