exploitDog

GHSA-qw7p-qjwr-4v7h

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 6.5

Описание

IBM Tivoli Endpoint Manager (IBM BigFix Platform 9.2 and 9.5) does not perform an authentication check for a critical resource or functionality allowing anonymous users access to protected areas. IBM X-Force ID: 123862.

IBM Tivoli Endpoint Manager (IBM BigFix Platform 9.2 and 9.5) does not perform an authentication check for a critical resource or functionality allowing anonymous users access to protected areas. IBM X-Force ID: 123862.

Ссылки

EPSS

Процентиль: 39%

0.00178

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-287

Связанные уязвимости

CVE-2017-1222

CVSS3: 6.5

nvd

больше 8 лет назад

IBM Tivoli Endpoint Manager (IBM BigFix Platform 9.2 and 9.5) does not perform an authentication check for a critical resource or functionality allowing anonymous users access to protected areas. IBM X-Force ID: 123862.

EPSS

Процентиль: 39%

0.00178

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-287