exploitDog

GHSA-jfx2-4jj8-x2wj

Опубликовано: 25 янв. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 4.3

Описание

IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.3.6 iFix1, 2.3.3.6 iFix2, 2.3.3.7, and 2.3.3.7 iFix1 could allow an authenticated user to obtain sensitive information from log files.

IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.3.6 iFix1, 2.3.3.6 iFix2, 2.3.3.7, and 2.3.3.7 iFix1 could allow an authenticated user to obtain sensitive information from log files.

Ссылки

EPSS

Процентиль: 33%

0.00131

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-532

Связанные уязвимости

CVE-2023-38271

CVSS3: 4.3

nvd

около 1 года назад

IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.3.6 iFix1, 2.3.3.6 iFix2, 2.3.3.7, and 2.3.3.7 iFix1 could allow an authenticated user to obtain sensitive information from log files.

EPSS

Процентиль: 33%

0.00131

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-532