admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-05-07 11:06:39 +00:00
Code Issues Packages Projects Releases Wiki Activity

"-Synchronized-Data."

Browse Source
This commit is contained in:
CVE Team 2019-06-06 21:00:53 +00:00
parent 4e1eb5cfe0
commit 1e4c3fe764
No known key found for this signature in database
GPG Key ID: 0DA1F9F56BC892E8
9 changed files with 566 additions and 551 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
1999/0xxx/CVE-1999-0095.json
View File

@ -66,6 +66,11 @@
"refsource": "MLIST",
"name": "[oss-security] 20190605 Re: CVE-2019-10149: Exim 4.87 to 4.91: possible remote exploit",
"url": "http://www.openwall.com/lists/oss-security/2019/06/05/4"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20190606 Re: CVE-2019-10149: Exim 4.87 to 4.91: possible remote exploit",
"url": "http://www.openwall.com/lists/oss-security/2019/06/06/1"
}
]
}

5
1999/0xxx/CVE-1999-0145.json
View File

@ -76,6 +76,11 @@
"refsource": "MLIST",
"name": "[oss-security] 20190605 Re: CVE-2019-10149: Exim 4.87 to 4.91: possible remote exploit",
"url": "http://www.openwall.com/lists/oss-security/2019/06/05/4"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20190606 Re: CVE-2019-10149: Exim 4.87 to 4.91: possible remote exploit",
"url": "http://www.openwall.com/lists/oss-security/2019/06/06/1"
}
]
}

5
2019/10xxx/CVE-2019-10149.json
View File

@ -88,6 +88,11 @@
"refsource": "GENTOO",
"name": "GLSA-201906-01",
"url": "https://security.gentoo.org/glsa/201906-01"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20190606 Re: CVE-2019-10149: Exim 4.87 to 4.91: possible remote exploit",
"url": "http://www.openwall.com/lists/oss-security/2019/06/06/1"
}
]
},

184
2019/4xxx/CVE-2019-4161.json
View File

@ -1,96 +1,96 @@
{
"data_version" : "4.0",
"description" : {
"description_data" : [
{
"value" : "IBM Security Information Queue (ISIQ) 1.0.0, 1.0.1, and 1.0.2 discloses sensitive information to unauthorized users. The information can be used to mount further attacks on the system. IBM X-Force ID: 158660.",
"lang" : "eng"
}
]
},
"CVE_data_meta" : {
"ID" : "CVE-2019-4161",
"ASSIGNER" : "psirt@us.ibm.com",
"DATE_PUBLIC" : "2019-06-04T00:00:00",
"STATE" : "PUBLIC"
},
"references" : {
"reference_data" : [
{
"url" : "https://www.ibm.com/support/docview.wss?uid=ibm10885959",
"name" : "https://www.ibm.com/support/docview.wss?uid=ibm10885959",
"title" : "IBM Security Bulletin 885959 (Security Information Queue)",
"refsource" : "CONFIRM"
},
{
"title" : "X-Force Vulnerability Report",
"refsource" : "XF",
"name" : "ibm-isiq-cve20194161-info-disc (158660)",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/158660"
}
]
},
"affects" : {
"vendor" : {
"vendor_data" : [
"data_version": "4.0",
"description": {
"description_data": [
{
"vendor_name" : "IBM",
"product" : {
"product_data" : [
{
"version" : {
"version_data" : [
{
"version_value" : "1.0.0"
},
{
"version_value" : "1.0.1"
},
{
"version_value" : "1.0.2"
}
]
},
"product_name" : "Security Information Queue"
}
]
}
"value": "IBM Security Information Queue (ISIQ) 1.0.0, 1.0.1, and 1.0.2 discloses sensitive information to unauthorized users. The information can be used to mount further attacks on the system. IBM X-Force ID: 158660.",
"lang": "eng"
}
]
}
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "Obtain Information"
}
]
},
"CVE_data_meta": {
"ID": "CVE-2019-4161",
"ASSIGNER": "psirt@us.ibm.com",
"DATE_PUBLIC": "2019-06-04T00:00:00",
"STATE": "PUBLIC"
},
"references": {
"reference_data": [
{
"url": "https://www.ibm.com/support/docview.wss?uid=ibm10885959",
"name": "https://www.ibm.com/support/docview.wss?uid=ibm10885959",
"title": "IBM Security Bulletin 885959 (Security Information Queue)",
"refsource": "CONFIRM"
},
{
"title": "X-Force Vulnerability Report",
"refsource": "XF",
"name": "ibm-isiq-cve20194161-info-disc (158660)",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/158660"
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "IBM",
"product": {
"product_data": [
{
"version": {
"version_data": [
{
"version_value": "1.0.0"
},
{
"version_value": "1.0.1"
},
{
"version_value": "1.0.2"
}
]
},
"product_name": "Security Information Queue"
}
]
}
}
]
}
]
},
"data_type" : "CVE",
"impact" : {
"cvssv3" : {
"TM" : {
"RC" : "C",
"E" : "U",
"RL" : "O"
},
"BM" : {
"SCORE" : "4.000",
"I" : "N",
"PR" : "N",
"AV" : "L",
"AC" : "L",
"S" : "U",
"UI" : "N",
"A" : "N",
"C" : "L"
}
}
},
"data_format" : "MITRE"
}
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Obtain Information"
}
]
}
]
},
"data_type": "CVE",
"impact": {
"cvssv3": {
"TM": {
"RC": "C",
"E": "U",
"RL": "O"
},
"BM": {
"SCORE": "4.000",
"I": "N",
"PR": "N",
"AV": "L",
"AC": "L",
"S": "U",
"UI": "N",
"A": "N",
"C": "L"
}
}
},
"data_format": "MITRE"
}

186
2019/4xxx/CVE-2019-4162.json
View File

@ -1,96 +1,96 @@
{
"description" : {
"description_data" : [
{
"value" : "IBM Security Information Queue (ISIQ) 1.0.0, 1.0.1, and 1.0.2 is missing the HTTP Strict Transport Security header. Users can navigate by mistake to the unencrypted version of the web application or accept invalid certificates. This leads to sensitive data being sent unencrypted over the wire. IBM X-Force ID: 158661.",
"lang" : "eng"
}
]
},
"data_version" : "4.0",
"CVE_data_meta" : {
"ID" : "CVE-2019-4162",
"ASSIGNER" : "psirt@us.ibm.com",
"DATE_PUBLIC" : "2019-06-04T00:00:00",
"STATE" : "PUBLIC"
},
"data_format" : "MITRE",
"impact" : {
"cvssv3" : {
"BM" : {
"SCORE" : "5.900",
"I" : "N",
"PR" : "N",
"AC" : "H",
"AV" : "N",
"S" : "U",
"UI" : "N",
"A" : "N",
"C" : "H"
},
"TM" : {
"RL" : "O",
"E" : "U",
"RC" : "C"
}
}
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"value" : "Obtain Information",
"lang" : "eng"
}
]
}
]
},
"data_type" : "CVE",
"affects" : {
"vendor" : {
"vendor_data" : [
"description": {
"description_data": [
{
"vendor_name" : "IBM",
"product" : {
"product_data" : [
{
"product_name" : "Security Information Queue",
"version" : {
"version_data" : [
{
"version_value" : "1.0.0"
},
{
"version_value" : "1.0.1"
},
{
"version_value" : "1.0.2"
}
]
}
}
]
}
"value": "IBM Security Information Queue (ISIQ) 1.0.0, 1.0.1, and 1.0.2 is missing the HTTP Strict Transport Security header. Users can navigate by mistake to the unencrypted version of the web application or accept invalid certificates. This leads to sensitive data being sent unencrypted over the wire. IBM X-Force ID: 158661.",
"lang": "eng"
}
]
}
},
"references" : {
"reference_data" : [
{
"title" : "IBM Security Bulletin 885963 (Security Information Queue)",
"refsource" : "CONFIRM",
"name" : "https://www.ibm.com/support/docview.wss?uid=ibm10885963",
"url" : "https://www.ibm.com/support/docview.wss?uid=ibm10885963"
},
{
"title" : "X-Force Vulnerability Report",
"refsource" : "XF",
"name" : "ibm-isiq-cve20194162-info-disc (158661)",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/158661"
}
]
}
}
]
},
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2019-4162",
"ASSIGNER": "psirt@us.ibm.com",
"DATE_PUBLIC": "2019-06-04T00:00:00",
"STATE": "PUBLIC"
},
"data_format": "MITRE",
"impact": {
"cvssv3": {
"BM": {
"SCORE": "5.900",
"I": "N",
"PR": "N",
"AC": "H",
"AV": "N",
"S": "U",
"UI": "N",
"A": "N",
"C": "H"
},
"TM": {
"RL": "O",
"E": "U",
"RC": "C"
}
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"value": "Obtain Information",
"lang": "eng"
}
]
}
]
},
"data_type": "CVE",
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "IBM",
"product": {
"product_data": [
{
"product_name": "Security Information Queue",
"version": {
"version_data": [
{
"version_value": "1.0.0"
},
{
"version_value": "1.0.1"
},
{
"version_value": "1.0.2"
}
]
}
}
]
}
}
]
}
},
"references": {
"reference_data": [
{
"title": "IBM Security Bulletin 885963 (Security Information Queue)",
"refsource": "CONFIRM",
"name": "https://www.ibm.com/support/docview.wss?uid=ibm10885963",
"url": "https://www.ibm.com/support/docview.wss?uid=ibm10885963"
},
{
"title": "X-Force Vulnerability Report",
"refsource": "XF",
"name": "ibm-isiq-cve20194162-info-disc (158661)",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/158661"
}
]
}
}

184
2019/4xxx/CVE-2019-4217.json
View File

@ -1,96 +1,96 @@
{
"description" : {
"description_data" : [
{
"value" : "IBM Security Information Queue (ISIQ) 1.0.0, 1.0.1, and 1.0.2 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly launch further attacks against the victim. IBM X-Force ID: 159226.",
"lang" : "eng"
}
]
},
"data_version" : "4.0",
"CVE_data_meta" : {
"ASSIGNER" : "psirt@us.ibm.com",
"ID" : "CVE-2019-4217",
"STATE" : "PUBLIC",
"DATE_PUBLIC" : "2019-06-04T00:00:00"
},
"data_format" : "MITRE",
"impact" : {
"cvssv3" : {
"TM" : {
"E" : "U",
"RC" : "C",
"RL" : "O"
},
"BM" : {
"S" : "C",
"AC" : "L",
"AV" : "N",
"PR" : "N",
"C" : "L",
"A" : "N",
"UI" : "R",
"SCORE" : "6.100",
"I" : "L"
}
}
},
"affects" : {
"vendor" : {
"vendor_data" : [
"description": {
"description_data": [
{
"product" : {
"product_data" : [
{
"version" : {
"version_data" : [
{
"version_value" : "1.0.0"
},
{
"version_value" : "1.0.1"
},
{
"version_value" : "1.0.2"
}
]
},
"product_name" : "Security Information Queue"
}
]
},
"vendor_name" : "IBM"
"value": "IBM Security Information Queue (ISIQ) 1.0.0, 1.0.1, and 1.0.2 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly launch further attacks against the victim. IBM X-Force ID: 159226.",
"lang": "eng"
}
]
}
},
"references" : {
"reference_data" : [
{
"name" : "https://www.ibm.com/support/docview.wss?uid=ibm10886051",
"url" : "https://www.ibm.com/support/docview.wss?uid=ibm10886051",
"refsource" : "CONFIRM",
"title" : "IBM Security Bulletin 886051 (Security Information Queue)"
},
{
"title" : "X-Force Vulnerability Report",
"refsource" : "XF",
"name" : "ibm-isiq-cve20194217-clickjacking (159226)",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/159226"
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "Gain Access"
}
]
},
"data_version": "4.0",
"CVE_data_meta": {
"ASSIGNER": "psirt@us.ibm.com",
"ID": "CVE-2019-4217",
"STATE": "PUBLIC",
"DATE_PUBLIC": "2019-06-04T00:00:00"
},
"data_format": "MITRE",
"impact": {
"cvssv3": {
"TM": {
"E": "U",
"RC": "C",
"RL": "O"
},
"BM": {
"S": "C",
"AC": "L",
"AV": "N",
"PR": "N",
"C": "L",
"A": "N",
"UI": "R",
"SCORE": "6.100",
"I": "L"
}
}
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"version": {
"version_data": [
{
"version_value": "1.0.0"
},
{
"version_value": "1.0.1"
},
{
"version_value": "1.0.2"
}
]
},
"product_name": "Security Information Queue"
}
]
},
"vendor_name": "IBM"
}
]
}
]
},
"data_type" : "CVE"
}
}
},
"references": {
"reference_data": [
{
"name": "https://www.ibm.com/support/docview.wss?uid=ibm10886051",
"url": "https://www.ibm.com/support/docview.wss?uid=ibm10886051",
"refsource": "CONFIRM",
"title": "IBM Security Bulletin 886051 (Security Information Queue)"
},
{
"title": "X-Force Vulnerability Report",
"refsource": "XF",
"name": "ibm-isiq-cve20194217-clickjacking (159226)",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/159226"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Gain Access"
}
]
}
]
},
"data_type": "CVE"
}

184
2019/4xxx/CVE-2019-4218.json
View File

@ -1,96 +1,96 @@
{
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "IBM Security Information Queue (ISIQ) 1.0.0, 1.0.1, and 1.0.2 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 159227."
}
]
},
"CVE_data_meta" : {
"STATE" : "PUBLIC",
"DATE_PUBLIC" : "2019-06-04T00:00:00",
"ASSIGNER" : "psirt@us.ibm.com",
"ID" : "CVE-2019-4218"
},
"data_version" : "4.0",
"data_format" : "MITRE",
"impact" : {
"cvssv3" : {
"TM" : {
"RC" : "C",
"E" : "U",
"RL" : "O"
},
"BM" : {
"SCORE" : "4.000",
"I" : "N",
"PR" : "N",
"AC" : "L",
"AV" : "L",
"S" : "U",
"UI" : "N",
"A" : "N",
"C" : "L"
}
}
},
"references" : {
"reference_data" : [
{
"refsource" : "CONFIRM",
"title" : "IBM Security Bulletin 886061 (Security Information Queue)",
"url" : "https://www.ibm.com/support/docview.wss?uid=ibm10886061",
"name" : "https://www.ibm.com/support/docview.wss?uid=ibm10886061"
},
{
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/159227",
"name" : "ibm-isiq-cve20194218-info-disc (159227)",
"refsource" : "XF",
"title" : "X-Force Vulnerability Report"
}
]
},
"affects" : {
"vendor" : {
"vendor_data" : [
"description": {
"description_data": [
{
"product" : {
"product_data" : [
{
"product_name" : "Security Information Queue",
"version" : {
"version_data" : [
{
"version_value" : "1.0.0"
},
{
"version_value" : "1.0.1"
},
{
"version_value" : "1.0.2"
}
]
}
}
]
},
"vendor_name" : "IBM"
"lang": "eng",
"value": "IBM Security Information Queue (ISIQ) 1.0.0, 1.0.1, and 1.0.2 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 159227."
}
]
}
},
"data_type" : "CVE",
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "Obtain Information"
}
]
},
"CVE_data_meta": {
"STATE": "PUBLIC",
"DATE_PUBLIC": "2019-06-04T00:00:00",
"ASSIGNER": "psirt@us.ibm.com",
"ID": "CVE-2019-4218"
},
"data_version": "4.0",
"data_format": "MITRE",
"impact": {
"cvssv3": {
"TM": {
"RC": "C",
"E": "U",
"RL": "O"
},
"BM": {
"SCORE": "4.000",
"I": "N",
"PR": "N",
"AC": "L",
"AV": "L",
"S": "U",
"UI": "N",
"A": "N",
"C": "L"
}
}
},
"references": {
"reference_data": [
{
"refsource": "CONFIRM",
"title": "IBM Security Bulletin 886061 (Security Information Queue)",
"url": "https://www.ibm.com/support/docview.wss?uid=ibm10886061",
"name": "https://www.ibm.com/support/docview.wss?uid=ibm10886061"
},
{
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/159227",
"name": "ibm-isiq-cve20194218-info-disc (159227)",
"refsource": "XF",
"title": "X-Force Vulnerability Report"
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Security Information Queue",
"version": {
"version_data": [
{
"version_value": "1.0.0"
},
{
"version_value": "1.0.1"
},
{
"version_value": "1.0.2"
}
]
}
}
]
},
"vendor_name": "IBM"
}
]
}
]
}
}
}
},
"data_type": "CVE",
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Obtain Information"
}
]
}
]
}
}

186
2019/4xxx/CVE-2019-4219.json
View File

@ -1,96 +1,96 @@
{
"CVE_data_meta" : {
"STATE" : "PUBLIC",
"DATE_PUBLIC" : "2019-06-04T00:00:00",
"ASSIGNER" : "psirt@us.ibm.com",
"ID" : "CVE-2019-4219"
},
"description" : {
"description_data" : [
{
"value" : "IBM Security Information Queue (ISIQ) 1.0.0, 1.0.1, and 1.0.2 generates an error message that includes sensitive information that could be used in further attacks against the system. IBM X-Force ID: 159228.",
"lang" : "eng"
}
]
},
"data_version" : "4.0",
"impact" : {
"cvssv3" : {
"BM" : {
"I" : "N",
"SCORE" : "4.300",
"A" : "N",
"UI" : "N",
"C" : "L",
"AC" : "L",
"AV" : "N",
"PR" : "L",
"S" : "U"
},
"TM" : {
"RL" : "O",
"E" : "U",
"RC" : "C"
}
}
},
"data_format" : "MITRE",
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"value" : "Obtain Information",
"lang" : "eng"
}
]
}
]
},
"data_type" : "CVE",
"references" : {
"reference_data" : [
{
"name" : "https://www.ibm.com/support/docview.wss?uid=ibm10886065",
"url" : "https://www.ibm.com/support/docview.wss?uid=ibm10886065",
"refsource" : "CONFIRM",
"title" : "IBM Security Bulletin 886065 (Security Information Queue)"
},
{
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/159228",
"name" : "ibm-isiq-cve20194219-info-disc (159228)",
"refsource" : "XF",
"title" : "X-Force Vulnerability Report"
}
]
},
"affects" : {
"vendor" : {
"vendor_data" : [
"CVE_data_meta": {
"STATE": "PUBLIC",
"DATE_PUBLIC": "2019-06-04T00:00:00",
"ASSIGNER": "psirt@us.ibm.com",
"ID": "CVE-2019-4219"
},
"description": {
"description_data": [
{
"product" : {
"product_data" : [
{
"product_name" : "Security Information Queue",
"version" : {
"version_data" : [
{
"version_value" : "1.0.0"
},
{
"version_value" : "1.0.1"
},
{
"version_value" : "1.0.2"
}
]
}
}
]
},
"vendor_name" : "IBM"
"value": "IBM Security Information Queue (ISIQ) 1.0.0, 1.0.1, and 1.0.2 generates an error message that includes sensitive information that could be used in further attacks against the system. IBM X-Force ID: 159228.",
"lang": "eng"
}
]
}
}
}
]
},
"data_version": "4.0",
"impact": {
"cvssv3": {
"BM": {
"I": "N",
"SCORE": "4.300",
"A": "N",
"UI": "N",
"C": "L",
"AC": "L",
"AV": "N",
"PR": "L",
"S": "U"
},
"TM": {
"RL": "O",
"E": "U",
"RC": "C"
}
}
},
"data_format": "MITRE",
"problemtype": {
"problemtype_data": [
{
"description": [
{
"value": "Obtain Information",
"lang": "eng"
}
]
}
]
},
"data_type": "CVE",
"references": {
"reference_data": [
{
"name": "https://www.ibm.com/support/docview.wss?uid=ibm10886065",
"url": "https://www.ibm.com/support/docview.wss?uid=ibm10886065",
"refsource": "CONFIRM",
"title": "IBM Security Bulletin 886065 (Security Information Queue)"
},
{
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/159228",
"name": "ibm-isiq-cve20194219-info-disc (159228)",
"refsource": "XF",
"title": "X-Force Vulnerability Report"
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Security Information Queue",
"version": {
"version_data": [
{
"version_value": "1.0.0"
},
{
"version_value": "1.0.1"
},
{
"version_value": "1.0.2"
}
]
}
}
]
},
"vendor_name": "IBM"
}
]
}
}
}

178
2019/4xxx/CVE-2019-4257.json
View File

@ -1,93 +1,93 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "psirt@us.ibm.com",
"ID" : "CVE-2019-4257",
"STATE" : "PUBLIC",
"DATE_PUBLIC" : "2019-04-29T00:00:00"
},
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "IBM InfoSphere Information Server 11.5 and 11.7 is affected by an information disclosure vulnerability. Sensitive information in an error message may be used to conduct further attacks against the system. IBM X-Force ID: 159945."
}
]
},
"data_version" : "4.0",
"data_format" : "MITRE",
"impact" : {
"cvssv3" : {
"BM" : {
"I" : "N",
"SCORE" : "4.300",
"C" : "L",
"UI" : "N",
"A" : "N",
"S" : "U",
"PR" : "L",
"AC" : "L",
"AV" : "N"
},
"TM" : {
"RC" : "C",
"E" : "U",
"RL" : "O"
}
}
},
"affects" : {
"vendor" : {
"vendor_data" : [
"CVE_data_meta": {
"ASSIGNER": "psirt@us.ibm.com",
"ID": "CVE-2019-4257",
"STATE": "PUBLIC",
"DATE_PUBLIC": "2019-04-29T00:00:00"
},
"description": {
"description_data": [
{
"vendor_name" : "IBM",
"product" : {
"product_data" : [
{
"version" : {
"version_data" : [
{
"version_value" : "11.5"
},
{
"version_value" : "11.7"
}
]
},
"product_name" : "InfoSphere Information Server"
}
]
}
"lang": "eng",
"value": "IBM InfoSphere Information Server 11.5 and 11.7 is affected by an information disclosure vulnerability. Sensitive information in an error message may be used to conduct further attacks against the system. IBM X-Force ID: 159945."
}
]
}
},
"references" : {
"reference_data" : [
{
"title" : "IBM Security Bulletin 882478 (InfoSphere Information Server)",
"refsource" : "CONFIRM",
"url" : "https://www.ibm.com/support/docview.wss?uid=ibm10882478",
"name" : "https://www.ibm.com/support/docview.wss?uid=ibm10882478"
},
{
"refsource" : "XF",
"title" : "X-Force Vulnerability Report",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/159945",
"name" : "ibm-infosphere-cve20194257-info-disc (159945)"
}
]
},
"data_type" : "CVE",
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "Obtain Information"
}
]
},
"data_version": "4.0",
"data_format": "MITRE",
"impact": {
"cvssv3": {
"BM": {
"I": "N",
"SCORE": "4.300",
"C": "L",
"UI": "N",
"A": "N",
"S": "U",
"PR": "L",
"AC": "L",
"AV": "N"
},
"TM": {
"RC": "C",
"E": "U",
"RL": "O"
}
}
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "IBM",
"product": {
"product_data": [
{
"version": {
"version_data": [
{
"version_value": "11.5"
},
{
"version_value": "11.7"
}
]
},
"product_name": "InfoSphere Information Server"
}
]
}
}
]
}
]
}
}
}
},
"references": {
"reference_data": [
{
"title": "IBM Security Bulletin 882478 (InfoSphere Information Server)",
"refsource": "CONFIRM",
"url": "https://www.ibm.com/support/docview.wss?uid=ibm10882478",
"name": "https://www.ibm.com/support/docview.wss?uid=ibm10882478"
},
{
"refsource": "XF",
"title": "X-Force Vulnerability Report",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/159945",
"name": "ibm-infosphere-cve20194257-info-disc (159945)"
}
]
},
"data_type": "CVE",
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Obtain Information"
}
]
}
]
}
}