Sensitive Information Exposure in IBM Financial Transaction Manager
CVE-2017-1538
6.5MEDIUM
Key Information:
- Vendor
- IBM
- Vendor
- CVE Published:
- 10 October 2017
Summary
The IBM Financial Transaction Manager for ACH Services for Multi-Platform version 3.0.2 is vulnerable to a security flaw that permits authenticated users to access sensitive information through an undocumented URL. This vulnerability can potentially expose critical data, making it essential for users to implement corrective measures to safeguard their systems against unauthorized access.
Affected Version(s)
IBM Financial Transaction Manager 3.0.2
References
CVSS V3.1
Score:
6.5
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved