CVE-2016-5988

Опубликовано: 01 фев. 2017

Источник: nvd

CVSS3: 6.5

CVSS2: 4

EPSS Низкий

Описание

IBM Security Privileged Identity Manager Virtual Appliance could disclose sensitive information in generated error messages that would be available to an authenticated user.

Ссылки

http://www.ibm.com/support/docview.wss?uid=swg21996614
Patch
Vendor Advisory
http://www.securityfocus.com/bid/95198
Third Party Advisory
VDB Entry
http://www.ibm.com/support/docview.wss?uid=swg21996614
Patch
Vendor Advisory
http://www.securityfocus.com/bid/95198
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:ibm:security_privileged_identity_manager:2.0.2:*:*:*:*:*:*:*

cpe:2.3:a:ibm:security_privileged_identity_manager:2.1:*:*:*:*:*:*:*

EPSS

Процентиль: 48%

0.00252

Низкий

6.5 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

GHSA-hv65-hmj5-p9wh