Описание
IBM WebSphere Automation for IBM Cloud Pak for Watson AIOps 1.4.2 could provide a weaker than expected security. A local attacker can create an outbound network connection to another system. IBM X-Force ID: 240827.
Ссылки
- Broken LinkVDB EntryVendor Advisory
- PatchVendor Advisory
- Broken LinkVDB EntryVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.4.3 (исключая)
cpe:2.3:a:ibm:websphere_automation_for_ibm_cloud_pak_for_watson_aiops:*:*:*:*:*:*:*:*
EPSS
Процентиль: 12%
0.00039
Низкий
5.3 Medium
CVSS3
6.5 Medium
CVSS3
Дефекты
CWE-287
CWE-287
Связанные уязвимости
CVSS3: 6.5
github
около 3 лет назад
IBM WebSphere Automation for IBM Cloud Pak for Watson AIOps 1.4.2 could provide a weaker than expected security. A local attacker can create an outbound network connection to another system. IBM X-Force ID: 240827.
EPSS
Процентиль: 12%
0.00039
Низкий
5.3 Medium
CVSS3
6.5 Medium
CVSS3
Дефекты
CWE-287
CWE-287