CVE-2018-1377

Опубликовано: 26 фев. 2018

Источник: nvd

CVSS3: 7.8

CVSS2: 2.1

EPSS Низкий

Описание

IBM Security Guardium Big Data Intelligence (SonarG) 3.1 stores user credentials in plain in clear text which can be read by a local user. IBM X-Force ID: 137778.

Ссылки

http://www.ibm.com/support/docview.wss?uid=swg22013596
Vendor Advisory
http://www.securityfocus.com/bid/103213
Third Party Advisory
VDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/137778
VDB Entry
Vendor Advisory
http://www.ibm.com/support/docview.wss?uid=swg22013596
Vendor Advisory
http://www.securityfocus.com/bid/103213
Third Party Advisory
VDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/137778
VDB Entry
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:ibm:security_guardium_big_data_intelligence:3.1:*:*:*:*:*:*:*

EPSS

Процентиль: 14%

0.00045

Низкий

7.8 High

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-522

Связанные уязвимости

GHSA-c6g4-v26w-7hqg