cvelist/2020/4xxx/CVE-2020-4319.json

{
    "description": {
        "description_data": [
            {
                "lang": "eng",
                "value": "IBM MQ, IBM MQ Appliance, and IBM MQ for HPE NonStop 8.0, 9.1 LTS, and 9.1 CD could allow under special circumstances, an authenticated user to obtain sensitive information due to a data leak from an error message within the pre-v7 pubsub logic. IBM X-Force ID: 177402."
            }
        ]
    },
    "CVE_data_meta": {
        "STATE": "PUBLIC",
        "ASSIGNER": "psirt@us.ibm.com",
        "ID": "CVE-2020-4319",
        "DATE_PUBLIC": "2020-07-27T00:00:00"
    },
    "problemtype": {
        "problemtype_data": [
            {
                "description": [
                    {
                        "value": "Obtain Information",
                        "lang": "eng"
                    }
                ]
            }
        ]
    },
    "data_format": "MITRE",
    "references": {
        "reference_data": [
            {
                "refsource": "CONFIRM",
                "name": "https://www.ibm.com/support/pages/node/6252777",
                "url": "https://www.ibm.com/support/pages/node/6252777",
                "title": "IBM Security Bulletin 6252777 (MQ Appliance)"
            },
            {
                "refsource": "XF",
                "title": "X-Force Vulnerability Report",
                "name": "ibm-mq-cve20204319-info-disc (177402)",
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/177402"
            }
        ]
    },
    "data_version": "4.0",
    "impact": {
        "cvssv3": {
            "BM": {
                "UI": "N",
                "I": "N",
                "PR": "L",
                "S": "U",
                "C": "L",
                "AC": "H",
                "SCORE": "3.100",
                "A": "N",
                "AV": "N"
            },
            "TM": {
                "E": "U",
                "RC": "C",
                "RL": "O"
            }
        }
    },
    "data_type": "CVE",
    "affects": {
        "vendor": {
            "vendor_data": [
                {
                    "vendor_name": "IBM",
                    "product": {
                        "product_data": [
                            {
                                "version": {
                                    "version_data": [
                                        {
                                            "version_value": "8.0"
                                        },
                                        {
                                            "version_value": "9.1.LTS"
                                        },
                                        {
                                            "version_value": "9.1.CD"
                                        }
                                    ]
                                },
                                "product_name": "MQ Appliance"
                            }
                        ]
                    }
                }
            ]
        }
    }
}
"-Synchronized-Data." 2019-12-30 17:02:02 +00:00			`{`
"-Synchronized-Data." 2020-07-28 13:01:37 +00:00			`"description": {`
			`"description_data": [`
			`{`
			`"lang": "eng",`
			`"value": "IBM MQ, IBM MQ Appliance, and IBM MQ for HPE NonStop 8.0, 9.1 LTS, and 9.1 CD could allow under special circumstances, an authenticated user to obtain sensitive information due to a data leak from an error message within the pre-v7 pubsub logic. IBM X-Force ID: 177402."`
			`}`
			`]`
			`},`
			`"CVE_data_meta": {`
			`"STATE": "PUBLIC",`
			`"ASSIGNER": "psirt@us.ibm.com",`
			`"ID": "CVE-2020-4319",`
			`"DATE_PUBLIC": "2020-07-27T00:00:00"`
			`},`
			`"problemtype": {`
			`"problemtype_data": [`
			`{`
			`"description": [`
			`{`
			`"value": "Obtain Information",`
			`"lang": "eng"`
			`}`
			`]`
			`}`
			`]`
			`},`
			`"data_format": "MITRE",`
			`"references": {`
			`"reference_data": [`
			`{`
			`"refsource": "CONFIRM",`
			`"name": "https://www.ibm.com/support/pages/node/6252777",`
			`"url": "https://www.ibm.com/support/pages/node/6252777",`
			`"title": "IBM Security Bulletin 6252777 (MQ Appliance)"`
			`},`
"-Synchronized-Data." 2019-12-30 17:02:02 +00:00			`{`
"-Synchronized-Data." 2020-07-28 13:01:37 +00:00			`"refsource": "XF",`
			`"title": "X-Force Vulnerability Report",`
			`"name": "ibm-mq-cve20204319-info-disc (177402)",`
			`"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/177402"`
"-Synchronized-Data." 2019-12-30 17:02:02 +00:00			`}`
"-Synchronized-Data." 2020-07-28 13:01:37 +00:00			`]`
			`},`
			`"data_version": "4.0",`
			`"impact": {`
			`"cvssv3": {`
			`"BM": {`
			`"UI": "N",`
			`"I": "N",`
			`"PR": "L",`
			`"S": "U",`
			`"C": "L",`
			`"AC": "H",`
			`"SCORE": "3.100",`
			`"A": "N",`
			`"AV": "N"`
			`},`
			`"TM": {`
			`"E": "U",`
			`"RC": "C",`
			`"RL": "O"`
			`}`
			`}`
			`},`
			`"data_type": "CVE",`
			`"affects": {`
			`"vendor": {`
			`"vendor_data": [`
			`{`
			`"vendor_name": "IBM",`
			`"product": {`
			`"product_data": [`
			`{`
			`"version": {`
			`"version_data": [`
			`{`
			`"version_value": "8.0"`
			`},`
			`{`
			`"version_value": "9.1.LTS"`
			`},`
			`{`
			`"version_value": "9.1.CD"`
			`}`
			`]`
			`},`
			`"product_name": "MQ Appliance"`
			`}`
			`]`
			`}`
			`}`
			`]`
			`}`
			`}`
			`}`