Описание
IBM Eclipse Help System (IEHS), as used in IBM Rational Directory Server 5.1.1 through 5.1.1.2 and 5.2 through 5.2.1 and other products, allows remote attackers to obtain sensitive information by providing a crafted parameter path and then reading the debug information associated with the 500 HTTP status code.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 5.1.1.2 (включая)
Одно из
cpe:2.3:a:ibm:rational_directory_server:*:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_directory_server:5.1.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_directory_server:5.1.1.1:*:*:*:*:*:*:*
Конфигурация 2Версия до 5.2.1 (включая)
Одно из
cpe:2.3:a:ibm:rational_directory_server:*:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_directory_server:5.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_directory_server:5.2.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_directory_server:5.2.0.2:*:*:*:*:*:*:*
EPSS
Процентиль: 48%
0.00254
Низкий
5 Medium
CVSS2
Дефекты
CWE-200
Связанные уязвимости
github
больше 3 лет назад
IBM Eclipse Help System (IEHS), as used in IBM Rational Directory Server 5.1.1 through 5.1.1.2 and 5.2 through 5.2.1 and other products, allows remote attackers to obtain sensitive information by providing a crafted parameter path and then reading the debug information associated with the 500 HTTP status code.
EPSS
Процентиль: 48%
0.00254
Низкий
5 Medium
CVSS2
Дефекты
CWE-200