Data Exposure Vulnerability in IBM Cloud Private
CVE-2018-1938
4.4MEDIUM
Summary
A vulnerability in IBM Cloud Private 3.1.1 allows local users with administrator privileges to intercept sensitive unencrypted data. This exposure can lead to unauthorized access and compromise critical information, affecting the integrity and confidentiality of the data managed by the cloud platform.
Affected Version(s)
Cloud Private 3.1.1
References
CVSS V3.1
Score:
4.4
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved