Information Disclosure Vulnerability in IBM StoreIQ by IBM
CVE-2019-4163

4.3MEDIUM

Key Information:

Vendor: IBM
Status: Storediq
Vendor: CVE Published:; 31 July 2019

Summary

An information disclosure vulnerability affecting IBM StoreIQ versions 7.6.0.0 to 7.6.0.18 allows an authenticated user to access sensitive data that is meant to be restricted to privileged users. This issue presents a potential risk of unauthorized access to confidential information, which could be exploited in various ways. For further insights, refer to IBM's official documentation and the IBM X-Force ID: 158696.

Affected Version(s)

StoredIQ 7.6.0.0

StoredIQ 7.6.0.18

References

http://www.ibm.com/support/docview.wss?uid=ibm10960009

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/158696

vdb-entryx_refsource_XF

CVSS V3.1

Score:

4.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jul 31, 2019
Vulnerability Reserved
Jan 3, 2019