CVE-2018-1734 - Vulnerability Details

Vendors	Products
Ibm	Rational Collaborative Lifecycle Management Rational Doors Next Generation Rational Engineering Lifecycle Manager Rational Quality Manager Rational Rhapsody Design Manager Rational Software Architect Design Manager Rational Team Concert Rhapsody Model Manager

Link	Providers
http://www.ibm.com/support/docview.wss?uid=ibm10956525
https://exchange.xforce.ibmcloud.com/vulnerabilities/147838

Show plain JSON

{"containers": {"cna": {"affected": [{"product": "Rational Collaborative Lifecycle Management", "vendor": "IBM", "versions": [{"status": "affected", "version": "6.0"}, {"status": "affected", "version": "6.0.1"}, {"status": "affected", "version": "6.0.2"}, {"status": "affected", "version": "6.0.3"}, {"status": "affected", "version": "6.0.4"}, {"status": "affected", "version": "6.0.5"}, {"status": "affected", "version": "6.0.6"}, {"status": "affected", "version": "6.0.6.1"}]}], "datePublic": "2019-06-25T00:00:00", "descriptions": [{"lang": "en", "value": "IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 discloses sensitive information in error messages that may be used by a malicious user to orchestrate further attacks. IBM X-Force ID: 147838."}], "metrics": [{"cvssV3_0": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "exploitCodeMaturity": "UNPROVEN", "integrityImpact": "NONE", "privilegesRequired": "LOW", "remediationLevel": "OFFICIAL_FIX", "reportConfidence": "CONFIRMED", "scope": "UNCHANGED", "temporalScore": 3.8, "temporalSeverity": "LOW", "userInteraction": "NONE", "vectorString": "CVSS:3.0/UI:N/PR:L/AV:N/C:L/I:N/S:U/A:N/AC:L/RL:O/RC:C/E:U", "version": "3.0"}}], "problemTypes": [{"descriptions": [{"description": "Obtain Information", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2019-06-27T13:45:29", "orgId": "9a959283-ebb5-44b6-b705-dcc2bbced522", "shortName": "ibm"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "http://www.ibm.com/support/docview.wss?uid=ibm10956525"}, {"name": "ibm-rhapsody-cve20181734-info-disc (147838)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/147838"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "psirt@us.ibm.com", "DATE_PUBLIC": "2019-06-25T00:00:00", "ID": "CVE-2018-1734", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "Rational Collaborative Lifecycle Management", "version": {"version_data": [{"version_value": "6.0"}, {"version_value": "6.0.1"}, {"version_value": "6.0.2"}, {"version_value": "6.0.3"}, {"version_value": "6.0.4"}, {"version_value": "6.0.5"}, {"version_value": "6.0.6"}, {"version_value": "6.0.6.1"}]}}]}, "vendor_name": "IBM"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 discloses sensitive information in error messages that may be used by a malicious user to orchestrate further attacks. IBM X-Force ID: 147838."}]}, "impact": {"cvssv3": {"BM": {"A": "N", "AC": "L", "AV": "N", "C": "L", "I": "N", "PR": "L", "S": "U", "UI": "N"}, "TM": {"E": "U", "RC": "C", "RL": "O"}}}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "Obtain Information"}]}]}, "references": {"reference_data": [{"name": "http://www.ibm.com/support/docview.wss?uid=ibm10956525", "refsource": "CONFIRM", "title": "IBM Security Bulletin 0956525 (Rational Collaborative Lifecycle Management)", "url": "http://www.ibm.com/support/docview.wss?uid=ibm10956525"}, {"name": "ibm-rhapsody-cve20181734-info-disc (147838)", "refsource": "XF", "title": "X-Force Vulnerability Report", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/147838"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-05T04:07:44.389Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.ibm.com/support/docview.wss?uid=ibm10956525"}, {"name": "ibm-rhapsody-cve20181734-info-disc (147838)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/147838"}]}]}, "cveMetadata": {"assignerOrgId": "9a959283-ebb5-44b6-b705-dcc2bbced522", "assignerShortName": "ibm", "cveId": "CVE-2018-1734", "datePublished": "2019-06-27T13:45:29.388873Z", "dateReserved": "2017-12-13T00:00:00", "dateUpdated": "2024-09-16T23:36:31.510Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{

containers : { »

cna : { »

affected : [ »

0 : { »

product : Rational Collaborative Lifecycle Management (string)

vendor : IBM (string)

versions : [ »

0 : { »

status : affected (string)

version : 6.0 (string)

}

1 : { »

status : affected (string)

version : 6.0.1 (string)

}

2 : { »

status : affected (string)

version : 6.0.2 (string)

}

3 : { »

status : affected (string)

version : 6.0.3 (string)

}

4 : { »

status : affected (string)

version : 6.0.4 (string)

}

5 : { »

status : affected (string)

version : 6.0.5 (string)

}

6 : { »

status : affected (string)

version : 6.0.6 (string)

}

7 : { »

status : affected (string)

version : 6.0.6.1 (string)

}

]

}

]

datePublic : 2019-06-25T00:00:00 (string)

descriptions : [ »

0 : { »

lang : en (string)

value : IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 discloses sensitive information in error messages that may be used by a malicious user to orchestrate further attacks. IBM X-Force ID: 147838. (string)

}

]

metrics : [ »

0 : { »

cvssV3_0 : { »

attackComplexity : LOW (string)

attackVector : NETWORK (string)

availabilityImpact : NONE (string)

baseScore : 4.3 (number)

baseSeverity : MEDIUM (string)

confidentialityImpact : LOW (string)

exploitCodeMaturity : UNPROVEN (string)

integrityImpact : NONE (string)

privilegesRequired : LOW (string)

remediationLevel : OFFICIAL_FIX (string)

reportConfidence : CONFIRMED (string)

scope : UNCHANGED (string)

temporalScore : 3.8 (number)

temporalSeverity : LOW (string)

userInteraction : NONE (string)

vectorString : CVSS:3.0/UI:N/PR:L/AV:N/C:L/I:N/S:U/A:N/AC:L/RL:O/RC:C/E:U (string)

version : 3.0 (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

description : Obtain Information (string)

lang : en (string)

type : text (string)

}

]

}

]

providerMetadata : { »

dateUpdated : 2019-06-27T13:45:29 (string)

orgId : 9a959283-ebb5-44b6-b705-dcc2bbced522 (string)

shortName : ibm (string)

}

references : [ »

0 : { »

tags : [ »

0 : x_refsource_CONFIRM (string)

]

url : http://www.ibm.com/support/docview.wss?uid=ibm10956525 (string)

}

1 : { »

name : ibm-rhapsody-cve20181734-info-disc (147838) (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_XF (string)

]

url : https://exchange.xforce.ibmcloud.com/vulnerabilities/147838 (string)

}

]

x_legacyV4Record : { »

CVE_data_meta : { »

ASSIGNER : psirt@us.ibm.com (string)

DATE_PUBLIC : 2019-06-25T00:00:00 (string)

ID : CVE-2018-1734 (string)

STATE : PUBLIC (string)

}

affects : { »

vendor : { »

vendor_data : [ »

0 : { »

product : { »

product_data : [ »

0 : { »

product_name : Rational Collaborative Lifecycle Management (string)

version : { »

version_data : [ »

0 : { »

version_value : 6.0 (string)

}

1 : { »

version_value : 6.0.1 (string)

}

2 : { »

version_value : 6.0.2 (string)

}

3 : { »

version_value : 6.0.3 (string)

}

4 : { »

version_value : 6.0.4 (string)

}

5 : { »

version_value : 6.0.5 (string)

}

6 : { »

version_value : 6.0.6 (string)

}

7 : { »

version_value : 6.0.6.1 (string)

}

]

}

]

}

vendor_name : IBM (string)

}

]

}

data_format : MITRE (string)

data_type : CVE (string)

data_version : 4.0 (string)

description : { »

description_data : [ »

0 : { »

lang : eng (string)

value : IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 discloses sensitive information in error messages that may be used by a malicious user to orchestrate further attacks. IBM X-Force ID: 147838. (string)

}

]

}

impact : { »

cvssv3 : { »

BM : { »

A : N (string)

AC : L (string)

AV : N (string)

C : L (string)

I : N (string)

PR : L (string)

S : U (string)

UI : N (string)

}

TM : { »

E : U (string)

RC : C (string)

RL : O (string)

}

problemtype : { »

problemtype_data : [ »

0 : { »

description : [ »

0 : { »

lang : eng (string)

value : Obtain Information (string)

}

]

}

]

}

references : { »

reference_data : [ »

0 : { »

name : http://www.ibm.com/support/docview.wss?uid=ibm10956525 (string)

refsource : CONFIRM (string)

title : IBM Security Bulletin 0956525 (Rational Collaborative Lifecycle Management) (string)

url : http://www.ibm.com/support/docview.wss?uid=ibm10956525 (string)

}

1 : { »

name : ibm-rhapsody-cve20181734-info-disc (147838) (string)

refsource : XF (string)

title : X-Force Vulnerability Report (string)

url : https://exchange.xforce.ibmcloud.com/vulnerabilities/147838 (string)

}

]

}

adp : [ »

0 : { »

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-05T04:07:44.389Z (string)

}

title : CVE Program Container (string)

references : [ »

0 : { »

tags : [ »

0 : x_refsource_CONFIRM (string)

1 : x_transferred (string)

]

url : http://www.ibm.com/support/docview.wss?uid=ibm10956525 (string)

}

1 : { »

name : ibm-rhapsody-cve20181734-info-disc (147838) (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_XF (string)

2 : x_transferred (string)

]

url : https://exchange.xforce.ibmcloud.com/vulnerabilities/147838 (string)

}

]

}

]

}

cveMetadata : { »

assignerOrgId : 9a959283-ebb5-44b6-b705-dcc2bbced522 (string)

assignerShortName : ibm (string)

cveId : CVE-2018-1734 (string)

datePublished : 2019-06-27T13:45:29.388873Z (string)

dateReserved : 2017-12-13T00:00:00 (string)

dateUpdated : 2024-09-16T23:36:31.510Z (string)

state : PUBLISHED (string)

}

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

}

Show plain JSON

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ibm:rational_collaborative_lifecycle_management:*:*:*:*:*:*:*:*", "matchCriteriaId": "6191DCC1-0B3D-4E9C-A344-F7B1BFFE2088", "versionEndIncluding": "6.0.6.1", "versionStartIncluding": "6.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:rational_doors_next_generation:*:*:*:*:*:*:*:*", "matchCriteriaId": "F290FC9D-C447-48FC-9B1C-C6E70E547604", "versionEndIncluding": "6.0.6.1", "versionStartIncluding": "6.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:rational_engineering_lifecycle_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "872DDF37-D4BB-42DB-A902-BFA2E5C4B458", "versionEndIncluding": "6.0.6.1", "versionStartIncluding": "6.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:rational_quality_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "D478070E-E421-4987-8726-D8BD3C9B641C", "versionEndIncluding": "6.0.6.1", "versionStartIncluding": "6.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:rational_rhapsody_design_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "D44C1F02-258A-49F2-A610-64F357F42AD5", "versionEndIncluding": "6.0.6.1", "versionStartIncluding": "6.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:rational_software_architect_design_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "A237ED01-A834-46B3-9396-6BA0EFF2B27A", "versionEndIncluding": "6.0.1", "versionStartIncluding": "6.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:rational_team_concert:*:*:*:*:*:*:*:*", "matchCriteriaId": "6FFD7DC9-CCC6-4276-87A6-34C72BBF5CDE", "versionEndIncluding": "6.0.6.1", "versionStartIncluding": "6.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:rhapsody_model_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "ED8AC12E-E329-49BA-A0A4-E3228C1C0EA7", "versionEndIncluding": "6.0.6.1", "versionStartIncluding": "6.0.5", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 discloses sensitive information in error messages that may be used by a malicious user to orchestrate further attacks. IBM X-Force ID: 147838."}, {"lang": "es", "value": "IBM Rational Collaborative Lifecycle Management 6.0 hasta 6.0.6.1 revela informaci\u00f3n confidencial en mensajes de error que un usuario malicioso puede usar para organizar m\u00e1s ataques. ID de IBM X-Force: 147838."}], "id": "CVE-2018-1734", "lastModified": "2024-11-21T04:00:16.733", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "NONE", "baseScore": 4.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:S/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "version": "3.0"}, "exploitabilityScore": 2.8, "impactScore": 1.4, "source": "psirt@us.ibm.com", "type": "Secondary"}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 1.4, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2019-06-27T14:15:09.910", "references": [{"source": "psirt@us.ibm.com", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.ibm.com/support/docview.wss?uid=ibm10956525"}, {"source": "psirt@us.ibm.com", "tags": ["VDB Entry", "Vendor Advisory"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/147838"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.ibm.com/support/docview.wss?uid=ibm10956525"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["VDB Entry", "Vendor Advisory"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/147838"}], "sourceIdentifier": "psirt@us.ibm.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-200"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{

configurations : [ »

0 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:a:ibm:rational_collaborative_lifecycle_management:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 6191DCC1-0B3D-4E9C-A344-F7B1BFFE2088 (string)

versionEndIncluding : 6.0.6.1 (string)

versionStartIncluding : 6.0 (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:a:ibm:rational_doors_next_generation:*:*:*:*:*:*:*:* (string)

matchCriteriaId : F290FC9D-C447-48FC-9B1C-C6E70E547604 (string)

versionEndIncluding : 6.0.6.1 (string)

versionStartIncluding : 6.0 (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:a:ibm:rational_engineering_lifecycle_manager:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 872DDF37-D4BB-42DB-A902-BFA2E5C4B458 (string)

versionEndIncluding : 6.0.6.1 (string)

versionStartIncluding : 6.0 (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:a:ibm:rational_quality_manager:*:*:*:*:*:*:*:* (string)

matchCriteriaId : D478070E-E421-4987-8726-D8BD3C9B641C (string)

versionEndIncluding : 6.0.6.1 (string)

versionStartIncluding : 6.0 (string)

vulnerable : true (boolean)

}

4 : { »

criteria : cpe:2.3:a:ibm:rational_rhapsody_design_manager:*:*:*:*:*:*:*:* (string)

matchCriteriaId : D44C1F02-258A-49F2-A610-64F357F42AD5 (string)

versionEndIncluding : 6.0.6.1 (string)

versionStartIncluding : 6.0 (string)

vulnerable : true (boolean)

}

5 : { »

criteria : cpe:2.3:a:ibm:rational_software_architect_design_manager:*:*:*:*:*:*:*:* (string)

matchCriteriaId : A237ED01-A834-46B3-9396-6BA0EFF2B27A (string)

versionEndIncluding : 6.0.1 (string)

versionStartIncluding : 6.0 (string)

vulnerable : true (boolean)

}

6 : { »

criteria : cpe:2.3:a:ibm:rational_team_concert:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 6FFD7DC9-CCC6-4276-87A6-34C72BBF5CDE (string)

versionEndIncluding : 6.0.6.1 (string)

versionStartIncluding : 6.0 (string)

vulnerable : true (boolean)

}

7 : { »

criteria : cpe:2.3:a:ibm:rhapsody_model_manager:*:*:*:*:*:*:*:* (string)

matchCriteriaId : ED8AC12E-E329-49BA-A0A4-E3228C1C0EA7 (string)

versionEndIncluding : 6.0.6.1 (string)

versionStartIncluding : 6.0.5 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

]

descriptions : [ »

0 : { »

lang : en (string)

value : IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 discloses sensitive information in error messages that may be used by a malicious user to orchestrate further attacks. IBM X-Force ID: 147838. (string)

}

1 : { »

lang : es (string)

value : IBM Rational Collaborative Lifecycle Management 6.0 hasta 6.0.6.1 revela información confidencial en mensajes de error que un usuario malicioso puede usar para organizar más ataques. ID de IBM X-Force: 147838. (string)

}

]

id : CVE-2018-1734 (string)

lastModified : 2024-11-21T04:00:16.733 (string)

metrics : { »

cvssMetricV2 : [ »

0 : { »

acInsufInfo : false (boolean)

baseSeverity : MEDIUM (string)

cvssData : { »

accessComplexity : LOW (string)

accessVector : NETWORK (string)

authentication : SINGLE (string)

availabilityImpact : NONE (string)

baseScore : 4 (number)

confidentialityImpact : PARTIAL (string)

integrityImpact : NONE (string)

vectorString : AV:N/AC:L/Au:S/C:P/I:N/A:N (string)

version : 2.0 (string)

}

exploitabilityScore : 8 (number)

impactScore : 2.9 (number)

obtainAllPrivilege : false (boolean)

obtainOtherPrivilege : false (boolean)

obtainUserPrivilege : false (boolean)

source : nvd@nist.gov (string)

type : Primary (string)

userInteractionRequired : false (boolean)

}

]

cvssMetricV30 : [ »

0 : { »

cvssData : { »

attackComplexity : LOW (string)

attackVector : NETWORK (string)

availabilityImpact : NONE (string)

baseScore : 4.3 (number)

baseSeverity : MEDIUM (string)

confidentialityImpact : LOW (string)

integrityImpact : NONE (string)

privilegesRequired : LOW (string)

scope : UNCHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N (string)

version : 3.0 (string)

}

exploitabilityScore : 2.8 (number)

impactScore : 1.4 (number)

source : psirt@us.ibm.com (string)

type : Secondary (string)

}

]

cvssMetricV31 : [ »

0 : { »

cvssData : { »

attackComplexity : LOW (string)

attackVector : NETWORK (string)

availabilityImpact : NONE (string)

baseScore : 4.3 (number)

baseSeverity : MEDIUM (string)

confidentialityImpact : LOW (string)

integrityImpact : NONE (string)

privilegesRequired : LOW (string)

scope : UNCHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N (string)

version : 3.1 (string)

}

exploitabilityScore : 2.8 (number)

impactScore : 1.4 (number)

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

published : 2019-06-27T14:15:09.910 (string)

references : [ »

0 : { »

source : psirt@us.ibm.com (string)

tags : [ »

0 : Patch (string)

1 : Vendor Advisory (string)

]

url : http://www.ibm.com/support/docview.wss?uid=ibm10956525 (string)

}

1 : { »

source : psirt@us.ibm.com (string)

tags : [ »

0 : VDB Entry (string)

1 : Vendor Advisory (string)

]

url : https://exchange.xforce.ibmcloud.com/vulnerabilities/147838 (string)

}

2 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Patch (string)

1 : Vendor Advisory (string)

]

url : http://www.ibm.com/support/docview.wss?uid=ibm10956525 (string)

}

3 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : VDB Entry (string)

1 : Vendor Advisory (string)

]

url : https://exchange.xforce.ibmcloud.com/vulnerabilities/147838 (string)

}

]

sourceIdentifier : psirt@us.ibm.com (string)

vulnStatus : Modified (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-200 (string)

}

]

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact Low

Integrity Impact None

Availability Impact None

User Interaction None

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact Low

Integrity Impact None

Availability Impact None

User Interaction None

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

Affected Vendors & Products

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact Low

Integrity Impact None

Availability Impact None

User Interaction None

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact Low

Integrity Impact None

Availability Impact None

User Interaction None

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object