admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-08-04 08:44:25 +00:00
Code Issues Packages Projects Releases Wiki Activity
cvelist/2021/20xxx/CVE-2021-20540.json
CVE Team d31b19d0ec
"-Synchronized-Data."
2021-08-02 17:00:59 +00:00

105 lines
3.5 KiB
JSON
Raw Blame History

{
"description": {
"description_data": [
{
"lang": "eng",
"value": "IBM Cloud Pak for Security (CP4S) 1.5.0.0, 1.5.1.0, 1.6.0.0, 1.6.1.0, 1.7.0.0, and 1.7.1.0 could disclose sensitive information to an unauthorized user through HTTP GET requests. This information could be used in further attacks against the system. IBM X-Force ID: 198923."
}
]
},
"data_type": "CVE",
"CVE_data_meta": {
"ASSIGNER": "psirt@us.ibm.com",
"ID": "CVE-2021-20540",
"DATE_PUBLIC": "2021-07-30T00:00:00",
"STATE": "PUBLIC"
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Obtain Information"
}
]
}
]
},
"data_version": "4.0",
"references": {
"reference_data": [
{
"refsource": "CONFIRM",
"name": "https://www.ibm.com/support/pages/node/6476940",
"url": "https://www.ibm.com/support/pages/node/6476940",
"title": "IBM Security Bulletin 6476940 (Cloud Pak for Security)"
},
{
"refsource": "XF",
"name": "ibm-cp4s-cve202120540-info-disc (198923)",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/198923",
"title": "X-Force Vulnerability Report"
}
]
},
"data_format": "MITRE",
"impact": {
"cvssv3": {
"TM": {
"E": "U",
"RC": "C",
"RL": "O"
},
"BM": {
"SCORE": "2.700",
"AC": "L",
"AV": "N",
"A": "N",
"S": "U",
"C": "L",
"UI": "N",
"PR": "H",
"I": "N"
}
}
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "IBM",
"product": {
"product_data": [
{
"product_name": "Cloud Pak for Security",
"version": {
"version_data": [
{
"version_value": "1.6.0.0"
},
{
"version_value": "1.5.0.1"
},
{
"version_value": "1.5.0.0"
},
{
"version_value": "1.6.0.1"
},
{
"version_value": "1.7.0.0"
},
{
"version_value": "1.7.1.0"
}
]
}
}
]
}
}
]
}
}
}
Reference in New Issue View Git Blame Copy Permalink