cvelist/2020/4xxx/CVE-2020-4232.json
2020-05-28 15:01:33 +00:00

90 lines
2.7 KiB
JSON

{
"data_version": "4.0",
"impact": {
"cvssv3": {
"TM": {
"E": "U",
"RL": "O",
"RC": "C"
},
"BM": {
"PR": "N",
"UI": "N",
"A": "N",
"AC": "L",
"SCORE": "5.300",
"AV": "N",
"C": "L",
"S": "U",
"I": "N"
}
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"value": "Obtain Information",
"lang": "eng"
}
]
}
]
},
"CVE_data_meta": {
"STATE": "PUBLIC",
"DATE_PUBLIC": "2020-05-27T00:00:00",
"ID": "CVE-2020-4232",
"ASSIGNER": "psirt@us.ibm.com"
},
"data_type": "CVE",
"references": {
"reference_data": [
{
"refsource": "CONFIRM",
"title": "IBM Security Bulletin 6207906 (Security Identity Governance and Intelligence)",
"url": "https://www.ibm.com/support/pages/node/6207906",
"name": "https://www.ibm.com/support/pages/node/6207906"
},
{
"refsource": "XF",
"title": "X-Force Vulnerability Report",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/175336",
"name": "ibm-sig-cve20204232-info-disc (175336)"
}
]
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "IBM Security Identity Governance and Intelligence 5.2.6 could allow an attacker to enumerate usernames to find valid login credentials which could be used to attempt further attacks against the system. IBM X-Force ID: 175336."
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "IBM",
"product": {
"product_data": [
{
"version": {
"version_data": [
{
"version_value": "5.2.6"
}
]
},
"product_name": "Security Identity Governance and Intelligence"
}
]
}
}
]
}
},
"data_format": "MITRE"
}