Описание
IBM BigFix Platform 9.2 and 9.5 could allow an attacker to query the relay remotely and gather information about the updates and fixlets deployed to the associated sites due to not enabling authenticated access. IBM X-Force ID: 156869.
Ссылки
- Broken LinkVendor Advisory
- Third Party Advisory
- Broken LinkThird Party AdvisoryVDB Entry
- VDB EntryVendor Advisory
- Broken LinkVendor Advisory
- Third Party Advisory
- Broken LinkThird Party AdvisoryVDB Entry
- VDB EntryVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 9.2 (включая) до 9.2.16 (включая)Версия от 9.5 (включая) до 9.5.11 (включая)
Одно из
cpe:2.3:a:ibm:bigfix_platform:*:*:*:*:*:*:*:*
cpe:2.3:a:ibm:bigfix_platform:*:*:*:*:*:*:*:*
EPSS
Процентиль: 99%
0.78782
Высокий
5.3 Medium
CVSS3
5.3 Medium
CVSS3
5 Medium
CVSS2
Дефекты
CWE-200
Связанные уязвимости
CVSS3: 5.3
github
больше 3 лет назад
IBM BigFix Platform 9.2 and 9.5 could allow an attacker to query the relay remotely and gather information about the updates and fixlets deployed to the associated sites due to not enabling authenticated access. IBM X-Force ID: 156869.
EPSS
Процентиль: 99%
0.78782
Высокий
5.3 Medium
CVSS3
5.3 Medium
CVSS3
5 Medium
CVSS2
Дефекты
CWE-200