mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-08-04 08:44:25 +00:00
119 lines
4.1 KiB
JSON
119 lines
4.1 KiB
JSON
{
|
|
"data_format": "MITRE",
|
|
"data_type": "CVE",
|
|
"impact": {
|
|
"cvssv3": {
|
|
"TM": {
|
|
"E": "U",
|
|
"RL": "O",
|
|
"RC": "C"
|
|
},
|
|
"BM": {
|
|
"I": "N",
|
|
"PR": "L",
|
|
"SCORE": "4.300",
|
|
"UI": "N",
|
|
"AV": "N",
|
|
"S": "U",
|
|
"AC": "L",
|
|
"A": "N",
|
|
"C": "L"
|
|
}
|
|
}
|
|
},
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"value": "Obtain Information",
|
|
"lang": "eng"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"CVE_data_meta": {
|
|
"STATE": "PUBLIC",
|
|
"ID": "CVE-2019-4484",
|
|
"ASSIGNER": "psirt@us.ibm.com",
|
|
"DATE_PUBLIC": "2019-08-13T00:00:00"
|
|
},
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"value": "IBM Emptoris Sourcing 10.1.0 through 10.1.3, IBM Contract Management 10.1.0 through 10.1.3, and IBM Emptoris Spend Analysis 10.1.0 through 10.1.3 generates an error message that includes sensitive information that could be used in further attacks against the system. IBM X-Force ID: 164068.",
|
|
"lang": "eng"
|
|
}
|
|
]
|
|
},
|
|
"data_version": "4.0",
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"title": "IBM Security Bulletin 880221 (Emptoris Sourcing)",
|
|
"refsource": "CONFIRM",
|
|
"url": "https://www.ibm.com/support/docview.wss?uid=ibm10880221",
|
|
"name": "https://www.ibm.com/support/docview.wss?uid=ibm10880221"
|
|
},
|
|
{
|
|
"name": "ibm-emptoris-cve20194484-info-disc (164068)",
|
|
"title": "X-Force Vulnerability Report",
|
|
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/164068",
|
|
"refsource": "XF"
|
|
}
|
|
]
|
|
},
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_value": "10.1.0"
|
|
},
|
|
{
|
|
"version_value": "10.1.3"
|
|
}
|
|
]
|
|
},
|
|
"product_name": "Contract Management"
|
|
},
|
|
{
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_value": "10.1.0"
|
|
},
|
|
{
|
|
"version_value": "10.1.3"
|
|
}
|
|
]
|
|
},
|
|
"product_name": "Emptoris Spend Analysis"
|
|
},
|
|
{
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_value": "10.1.0"
|
|
},
|
|
{
|
|
"version_value": "10.1.3"
|
|
}
|
|
]
|
|
},
|
|
"product_name": "Emptoris Sourcing"
|
|
}
|
|
]
|
|
},
|
|
"vendor_name": "IBM"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
} |