Описание
IBM Tivoli Provisioning Manager Express provides unspecified information in error messages when (1) attempted duplication of a username occurs when creating an account or (2) when trying to login using a valid username, which makes it easier for remote attackers to enumerate usernames.
Ссылки
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:ibm:tivoli_provisioning_manager_express:*:*:*:*:*:*:*:*
EPSS
Процентиль: 52%
0.00286
Низкий
5 Medium
CVSS2
Дефекты
CWE-200
Связанные уязвимости
github
почти 4 года назад
IBM Tivoli Provisioning Manager Express provides unspecified information in error messages when (1) attempted duplication of a username occurs when creating an account or (2) when trying to login using a valid username, which makes it easier for remote attackers to enumerate usernames.
EPSS
Процентиль: 52%
0.00286
Низкий
5 Medium
CVSS2
Дефекты
CWE-200