Sensitive Information Disclosure in IBM Insights Foundation for Energy
CVE-2017-1141
4.3MEDIUM
Summary
IBM Insights Foundation for Energy versions 1.0, 1.5, and 1.6 allow authenticated users to exploit a vulnerability that discloses sensitive information through error messages. This flaw could potentially compromise security and lead to unauthorized access to information that should remain confidential. Organizations using these versions are advised to apply necessary patches and implement proper security measures to mitigate risks associated with this vulnerability.
Affected Version(s)
IBM Insights Foundation for Energy 1.0, 1.5, 1.6
References
CVSS V3.1
Score:
4.3
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved