Information Disclosure Vulnerability in IBM WebSphere Service Registry and Repository
CVE-2019-4537

5.3MEDIUM

Key Information:

Vendor: IBM
Status: Websphere Service Registry And Repository
Vendor: CVE Published:; 26 February 2020

Summary

IBM WebSphere Service Registry and Repository version 8.5 has a vulnerability that may allow an unauthorized user to access sensitive version information. This information could potentially be leveraged for subsequent attacks against the system, thereby compromising its security integrity. Organizations utilizing this product are advised to take precautionary measures to mitigate risks associated with this exposure.

Affected Version(s)

WebSphere Service Registry and Repository 8.5

References

https://www.ibm.com/support/pages/node/3436359

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/165593

vdb-entryx_refsource_XF

CVSS V3.1

Score:

5.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Feb 26, 2020
Vulnerability Reserved
Jan 3, 2019