Denial of Service Vulnerability in IBM Jazz for Service Management
CVE-2019-4275

6.2MEDIUM

Key Information:

Vendor
IBM
Vendor
CVE Published:
2 August 2019

Summary

IBM Jazz for Service Management versions 1.1.3, 1.1.3.1, and 1.1.3.2 are susceptible to a vulnerability that permits an unauthorized local user to create unique catalog names. This action can result in a denial of service, disrupting the functionality of the service. For more information, refer to IBM's official documentation and X-Force ID 160296 for further insights.

Affected Version(s)

Jazz for Service Management 1.1.3

Jazz for Service Management 1.1.3.1

Jazz for Service Management 1.1.3.2

References

CVSS V3.1

Score:
6.2
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.