Описание
IBM Financial Transaction Manager for Digital Payments for Multi-Platform 3.2.0 through 3.2.7 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 193662.
Ссылки
- VDB EntryVendor Advisory
- Vendor Advisory
- VDB EntryVendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 3.2.0.0 (включая) до 3.2.7 (включая)
cpe:2.3:a:ibm:financial_transaction_manager:*:*:*:*:*:digital_payments:*:*
EPSS
Процентиль: 19%
0.00059
Низкий
4.3 Medium
CVSS3
7.5 High
CVSS3
Дефекты
CWE-209
Связанные уязвимости
CVSS3: 7.5
github
почти 3 года назад
IBM Financial Transaction Manager for Digital Payments for Multi-Platform 3.2.0 through 3.2.7 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 193662.
EPSS
Процентиль: 19%
0.00059
Низкий
4.3 Medium
CVSS3
7.5 High
CVSS3
Дефекты
CWE-209