Описание
IBM Controller 11.1.0 through 11.1.1 and IBM Cognos Controller 11.0.0 through 11.0.1 FP6 is vulnerable to creation of temporary files without atomic operations which may expose sensitive information to an authenticated user due to race condition attacks.
Ссылки
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 11.0.0 (включая) до 11.0.1.7 (исключая)Версия от 11.1.0 (включая) до 11.1.2 (исключая)
Одно из
cpe:2.3:a:ibm:cognos_controller:*:*:*:*:*:*:*:*
cpe:2.3:a:ibm:controller:*:*:*:*:*:*:*:*
EPSS
Процентиль: 9%
0.00033
Низкий
4.3 Medium
CVSS3
Дефекты
CWE-379
Связанные уязвимости
CVSS3: 4.3
github
2 месяца назад
IBM Controller 11.1.0 through 11.1.1 and IBM Cognos Controller 11.0.0 through 11.0.1 FP6 is vulnerable to creation of temporary files without atomic operations which may expose sensitive information to an authenticated user due to race condition attacks.
EPSS
Процентиль: 9%
0.00033
Низкий
4.3 Medium
CVSS3
Дефекты
CWE-379