Vulnerability in IBM Tivoli Endpoint Manager Exposes Sensitive Information
CVE-2017-1230
5.3MEDIUM
Summary
IBM Tivoli Endpoint Manager versions 9.2 and 9.5 contain a vulnerability due to the use of insufficiently random numbers in a security context that relies on unpredictable values. This weakness can potentially enable attackers to expose sensitive information by successfully guessing tokens or identifiers, thereby compromising the security integrity of the affected system. For further details, please visit the IBM X-Force advisory page.
References
CVSS V3.1
Score:
5.3
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved