Sensitive Information Disclosure in IBM TRIRIGA Application Platform
CVE-2020-4277
5.3MEDIUM
Summary
The IBM TRIRIGA Application Platform versions 3.5.3 and 3.6.1 have a vulnerability that exposes sensitive information in error messages. This disclosure can potentially provide attackers with insights that could facilitate the execution of future attacks. It is crucial for users of these versions to implement security best practices and review the provided references for updates and mitigation strategies.
Affected Version(s)
TRIRIGA Application Platform 3.5.3
TRIRIGA Application Platform 3.6.1
References
CVSS V3.1
Score:
5.3
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved