- Description
- IBM Tivoli Endpoint Manager (IBM BigFix Platform 9.2 and 9.5) generates an error message in error logs that includes sensitive information about its environment which could be used in further attacks against the system. IBM X-Force ID: 123905.
- Source
- psirt@us.ibm.com
- NVD status
- Modified
CVSS 3.0
- Type
- Primary
- Base score
- 4.3
- Impact score
- 1.4
- Exploitability score
- 2.8
- Vector string
- CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
- Severity
- MEDIUM
CVSS 2.0
- Type
- Primary
- Base score
- 4
- Impact score
- 2.9
- Exploitability score
- 8
- Vector string
- AV:N/AC:L/Au:S/C:P/I:N/A:N
- nvd@nist.gov
- CWE-200
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:ibm:bigfix_platform:9.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EDF3A293-36B6-41F3-87CE-EC2D89F212B1"
},
{
"criteria": "cpe:2.3:a:ibm:bigfix_platform:9.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9E59DD27-6637-4D89-867B-650AAD2F14B2"
}
],
"operator": "OR"
}
]
}
]