mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-07-30 18:04:30 +00:00
90 lines
2.7 KiB
JSON
90 lines
2.7 KiB
JSON
{
|
|
"data_version": "4.0",
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"value": "Obtain Information",
|
|
"lang": "eng"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"data_format": "MITRE",
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "IBM Security Directory Server 6.4.0 stores sensitive information in URLs. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referer header or browser history. IBM X-Force ID: 166623."
|
|
}
|
|
]
|
|
},
|
|
"impact": {
|
|
"cvssv3": {
|
|
"BM": {
|
|
"C": "L",
|
|
"UI": "N",
|
|
"PR": "N",
|
|
"S": "U",
|
|
"AV": "N",
|
|
"AC": "H",
|
|
"SCORE": "3.700",
|
|
"I": "N",
|
|
"A": "N"
|
|
},
|
|
"TM": {
|
|
"E": "U",
|
|
"RC": "C",
|
|
"RL": "O"
|
|
}
|
|
}
|
|
},
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"vendor_name": "IBM",
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "Security Directory Server",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_value": "6.4.0"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"refsource": "CONFIRM",
|
|
"title": "IBM Security Bulletin 1288660 (Security Directory Server)",
|
|
"url": "https://www.ibm.com/support/pages/node/1288660",
|
|
"name": "https://www.ibm.com/support/pages/node/1288660"
|
|
},
|
|
{
|
|
"name": "ibm-sds-cve20194562-info-disc (166623)",
|
|
"refsource": "XF",
|
|
"title": "X-Force Vulnerability Report",
|
|
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/166623"
|
|
}
|
|
]
|
|
},
|
|
"CVE_data_meta": {
|
|
"DATE_PUBLIC": "2020-02-03T00:00:00",
|
|
"ASSIGNER": "psirt@us.ibm.com",
|
|
"STATE": "PUBLIC",
|
|
"ID": "CVE-2019-4562"
|
|
},
|
|
"data_type": "CVE"
|
|
} |