Описание
IBM WebSphere eXtreme Scale and the WebSphere DataPower XC10 Appliance allow some sensitive data to linger in memory instead of being overwritten which could allow a local user with administrator privileges to obtain sensitive information.
Ссылки
- PatchVendor Advisory
- Third Party AdvisoryVDB Entry
- PatchVendor Advisory
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:ibm:websphere_extreme_scale:7.1.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_extreme_scale:7.1.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_extreme_scale:8.5:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_extreme_scale:8.6:*:*:*:*:*:*:*
EPSS
Процентиль: 33%
0.00128
Низкий
4.4 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-200
Связанные уязвимости
CVSS3: 4.4
github
больше 3 лет назад
IBM WebSphere eXtreme Scale and the WebSphere DataPower XC10 Appliance allow some sensitive data to linger in memory instead of being overwritten which could allow a local user with administrator privileges to obtain sensitive information.
EPSS
Процентиль: 33%
0.00128
Низкий
4.4 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-200