CVE-2019-4349

Опубликовано: 03 нояб. 2020

Источник: nvd

CVSS3: 3.5

CVSS2: 3.6

EPSS Низкий

Описание

IBM Maximo Anywhere 7.6.2.0, 7.6.2.1, 7.6.3.0, and 7.6.3.1 applications can be installed on a deprecated operating system version that could compromised the confidentiality and integrity of the service. IBM X-Force ID: 161486

Ссылки

https://exchange.xforce.ibmcloud.com/vulnerabilities/161486
VDB Entry
Vendor Advisory
https://www.ibm.com/support/pages/node/6358059
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/161486
VDB Entry
Vendor Advisory
https://www.ibm.com/support/pages/node/6358059
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:ibm:maximo_anywhere:7.6.2.0:*:*:*:*:*:*:*

cpe:2.3:a:ibm:maximo_anywhere:7.6.2.1:*:*:*:*:*:*:*

cpe:2.3:a:ibm:maximo_anywhere:7.6.3.0:*:*:*:*:*:*:*

cpe:2.3:a:ibm:maximo_anywhere:7.6.3.1:*:*:*:*:*:*:*

EPSS

Процентиль: 15%

0.00049

Низкий

3.5 Low

CVSS3

3.5 Low

CVSS3

3.6 Low

CVSS2

Дефекты

CWE-200

Связанные уязвимости

GHSA-q3h7-p4p5-w4x3

github

больше 3 лет назад

EPSS

Процентиль: 15%

0.00049

Низкий

3.5 Low

CVSS3

3.5 Low

CVSS3

3.6 Low

CVSS2

Дефекты

CWE-200