Описание
IBM Publishing Engine 2.1.2 and 6.0.5 contains an undisclosed vulnerability that could allow a local user with administrative privileges to obtain hard coded user credentials. IBM X-Force ID: 137022.
Ссылки
- PatchVendor Advisory
- Third Party AdvisoryVDB Entry
- VDB EntryVendor Advisory
- PatchVendor Advisory
- Third Party AdvisoryVDB Entry
- VDB EntryVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:ibm:engineering_lifecycle_optimization_-_publishing:2.1.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:engineering_lifecycle_optimization_-_publishing:6.0.5:*:*:*:*:*:*:*
EPSS
Процентиль: 12%
0.00039
Низкий
4.4 Medium
CVSS3
6.7 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-798
Связанные уязвимости
CVSS3: 6.7
github
больше 3 лет назад
IBM Publishing Engine 2.1.2 and 6.0.5 contains an undisclosed vulnerability that could allow a local user with administrative privileges to obtain hard coded user credentials. IBM X-Force ID: 137022.
EPSS
Процентиль: 12%
0.00039
Низкий
4.4 Medium
CVSS3
6.7 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-798