Описание
IBM Cloud Pak for Multicloud Management 2.3 through 2.3 FP8 stores user credentials in a log file plain clear text which can be read by a privileged user.
Ссылки
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:ibm:cloud_pak_for_multicloud_management_monitoring:2.3.0:-:*:*:*:*:*:*
cpe:2.3:a:ibm:cloud_pak_for_multicloud_management_monitoring:2.3.0:fixpack1:*:*:*:*:*:*
cpe:2.3:a:ibm:cloud_pak_for_multicloud_management_monitoring:2.3.0:fixpack2:*:*:*:*:*:*
cpe:2.3:a:ibm:cloud_pak_for_multicloud_management_monitoring:2.3.0:fixpack3:*:*:*:*:*:*
cpe:2.3:a:ibm:cloud_pak_for_multicloud_management_monitoring:2.3.0:fixpack4:*:*:*:*:*:*
cpe:2.3:a:ibm:cloud_pak_for_multicloud_management_monitoring:2.3.0:fixpack5:*:*:*:*:*:*
cpe:2.3:a:ibm:cloud_pak_for_multicloud_management_monitoring:2.3.0:fixpack6:*:*:*:*:*:*
cpe:2.3:a:ibm:cloud_pak_for_multicloud_management_monitoring:2.3.0:fixpack7:*:*:*:*:*:*
cpe:2.3:a:ibm:cloud_pak_for_multicloud_management_monitoring:2.3.0:fixpack8:*:*:*:*:*:*
EPSS
Процентиль: 29%
0.00107
Низкий
4.4 Medium
CVSS3
4.9 Medium
CVSS3
Дефекты
CWE-532
Связанные уязвимости
CVSS3: 4.4
github
больше 1 года назад
IBM Cloud Pak for Multicloud Management 2.3 through 2.3 FP8 stores user credentials in a log file plain clear text which can be read by a privileged user.
EPSS
Процентиль: 29%
0.00107
Низкий
4.4 Medium
CVSS3
4.9 Medium
CVSS3
Дефекты
CWE-532