Information Disclosure Vulnerability in IBM Storwize V7000 Unified
CVE-2019-4293
5.3MEDIUM
Summary
An information disclosure vulnerability in the IBM Storwize V7000 Unified (2073) version 1.6 can potentially expose the server version due to default installation settings. This exposure could be leveraged by attackers to initiate further targeted attacks on the system, compromising its security. Users are advised to evaluate their configurations and apply necessary security patches to mitigate any risks associated with this vulnerability.
Affected Version(s)
Storwize V7000 Unified (2073) 1.6
References
CVSS V3.1
Score:
5.3
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved