Описание
IBM OpenPages 9.0 is vulnerable to information disclosure of sensitive information due to a weaker than expected security for certain REST end points related to workflow feature of OpenPages. An authenticated user is able to obtain certain information about Workflow related configuration and internal state.
Ссылки
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 9.0.0 (включая) до 9.0.0.5 (исключая)
cpe:2.3:a:ibm:openpages:*:*:*:*:*:*:*:*
EPSS
Процентиль: 9%
0.00033
Низкий
4.3 Medium
CVSS3
Дефекты
CWE-497
Связанные уязвимости
CVSS3: 4.3
github
7 месяцев назад
IBM OpenPages 9.0 is vulnerable to information disclosure of sensitive information due to a weaker than expected security for certain REST end points related to workflow feature of OpenPages. An authenticated user is able to obtain certain information about Workflow related configuration and internal state.
EPSS
Процентиль: 9%
0.00033
Низкий
4.3 Medium
CVSS3
Дефекты
CWE-497