admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-08-04 08:44:25 +00:00
Code Issues Packages Projects Releases Wiki Activity
cvelist/2020/4xxx/CVE-2020-4160.json
Anthony Singleton 938debeed0 Revert "November 2021 Patch Tuesday" 
This reverts commit df296d9e014bf68ef22c0583c98da3fbe42ea316.
2021-11-17 15:47:33 -05:00

93 lines
2.9 KiB
JSON
Raw Blame History

{
"impact": {
"cvssv3": {
"BM": {
"C": "H",
"I": "N",
"A": "N",
"SCORE": "5.900",
"AC": "H",
"S": "U",
"PR": "N",
"UI": "N",
"AV": "N"
},
"TM": {
"RC": "C",
"E": "U",
"RL": "O"
}
}
},
"references": {
"reference_data": [
{
"name": "https://www.ibm.com/support/pages/node/6514403",
"title": "IBM Security Bulletin 6514403 (QRadar Network Security)",
"url": "https://www.ibm.com/support/pages/node/6514403",
"refsource": "CONFIRM"
},
{
"title": "X-Force Vulnerability Report",
"name": "ibm-qradar-cve20204160-info-disc (174340)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/174340"
}
]
},
"description": {
"description_data": [
{
"value": "IBM QRadar Network Security 5.4.0 and 5.5.0 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in the middle techniques. IBM X-Force ID: 174340.",
"lang": "eng"
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"version": {
"version_data": [
{
"version_value": "5.4.0"
},
{
"version_value": "5.5.0"
}
]
},
"product_name": "QRadar Network Security"
}
]
},
"vendor_name": "IBM"
}
]
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Obtain Information"
}
]
}
]
},
"data_version": "4.0",
"data_format": "MITRE",
"CVE_data_meta": {
"ASSIGNER": "psirt@us.ibm.com",
"STATE": "PUBLIC",
"DATE_PUBLIC": "2021-11-07T00:00:00",
"ID": "CVE-2020-4160"
},
"data_type": "CVE"
}
Reference in New Issue View Git Blame Copy Permalink