CVE-2021-38887

Опубликовано: 10 нояб. 2021

Источник: nvd

CVSS3: 4.3

CVSS3: 6.5

CVSS2: 4

EPSS Низкий

Описание

IBM InfoSphere Information Server 11.7 could allow an authenticated user to obtain sensitive information from application response requests that could be used in further attacks against the system. IBM X-Force ID: 209401.

Ссылки

https://exchange.xforce.ibmcloud.com/vulnerabilities/209401
VDB Entry
Vendor Advisory
https://www.ibm.com/support/pages/node/6510178
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/209401
VDB Entry
Vendor Advisory
https://www.ibm.com/support/pages/node/6510178
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:ibm:infosphere_information_server:11.7:*:*:*:*:*:*:*

EPSS

Процентиль: 37%

0.00162

Низкий

4.3 Medium

CVSS3

6.5 Medium

CVSS3

4 Medium

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-c454-qmr6-xqvq

CVSS3: 6.5

github

больше 3 лет назад

EPSS

Процентиль: 37%

0.00162

Низкий

4.3 Medium

CVSS3

6.5 Medium

CVSS3

4 Medium

CVSS2

Дефекты

NVD-CWE-noinfo