Sensitive Information Disclosure in IBM Security Privileged Identity Manager
CVE-2017-1705
4.3MEDIUM
Key Information:
- Vendor
IBM
- Vendor
- CVE Published:
- 30 March 2018
What is CVE-2017-1705?
IBM Security Privileged Identity Manager 2.1.0 has a vulnerability that allows sensitive information to be disclosed through residual data in page comments. Although this information is not initially visible on the application's user interface, it can be accessed via the page source. This can potentially lead to unauthorized disclosure of information that should remain confidential, exposing users and organizations to security risks.
Affected Version(s)
Security Privileged Identity Manager 2.1.0