Information Disclosure Vulnerability in IBM StoreIQ by IBM
CVE-2019-4163

4.3MEDIUM

Key Information:

Vendor: IBM
Status: Storediq
Vendor: CVE Published:; 31 July 2019

What is CVE-2019-4163?

An information disclosure vulnerability affecting IBM StoreIQ versions 7.6.0.0 to 7.6.0.18 allows an authenticated user to access sensitive data that is meant to be restricted to privileged users. This issue presents a potential risk of unauthorized access to confidential information, which could be exploited in various ways. For further insights, refer to IBM's official documentation and the IBM X-Force ID: 158696.

Affected Version(s)

StoredIQ 7.6.0.0

StoredIQ 7.6.0.18

References

http://www.ibm.com/support/docview.wss?uid=ibm10960009

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/158696

vdb-entryx_refsource_XF

CVSS V3.1

Score:

4.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 31, 2019
Vulnerability Reserved
Jan 3, 2019