Описание
IBM Cloud Pak System 2.3.3.6, 2.3.3.7, 2.3.4.0, 2.3.4.1, and 2.3.5.0 could disclose folder location information to an unauthenticated attacker that could aid in further attacks against the system.
Ссылки
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:ibm:cloud_pak_system:2.3.3.6:-:*:*:*:*:*:*
cpe:2.3:a:ibm:cloud_pak_system:2.3.3.7:-:*:*:*:*:*:*
cpe:2.3:a:ibm:cloud_pak_system:2.3.4.0:-:*:*:*:*:*:*
cpe:2.3:a:ibm:cloud_pak_system:2.3.4.1:-:*:*:*:*:*:*
cpe:2.3:a:ibm:cloud_pak_system:2.3.5.0:-:*:*:*:*:*:*
EPSS
Процентиль: 15%
0.00047
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-548
Связанные уязвимости
CVSS3: 5.3
github
около 2 месяцев назад
IBM Cloud Pak System 2.3.3.6, 2.3.3.7, 2.3.4.0, 2.3.4.1, and 2.3.5.0 could disclose folder location information to an unauthenticated attacker that could aid in further attacks against the system.
EPSS
Процентиль: 15%
0.00047
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-548