CVE-2019-4672

Опубликовано: 25 фев. 2020

Источник: nvd

CVSS3: 5.3

CVSS2: 5

EPSS Низкий

Описание

IBM QRadar Advisor 1.1 through 2.5 could allow an unauthorized attacker to obtain sensitive information from specially crafted HTTP requests that could aid in further attacks against the system. IBM X-Force ID: 171438.

Ссылки

https://exchange.xforce.ibmcloud.com/vulnerabilities/171438
VDB Entry
Vendor Advisory
https://www.ibm.com/support/pages/node/3379965
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/171438
VDB Entry
Vendor Advisory
https://www.ibm.com/support/pages/node/3379965
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:ibm:qradar_advisor:*:*:*:*:*:*:*:*

Версия от 1.1 (включая) до 2.5.1 (исключая)

EPSS

Процентиль: 36%

0.00152

Низкий

5.3 Medium

CVSS3

5.3 Medium

CVSS3

5 Medium

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-6vj2-ch3r-gcc3

github

больше 3 лет назад

EPSS

Процентиль: 36%

0.00152

Низкий

5.3 Medium

CVSS3

5.3 Medium

CVSS3

5 Medium

CVSS2

Дефекты

NVD-CWE-noinfo