Local File Storage Vulnerability in IBM Tivoli Business Service Manager
CVE-2020-4344
4MEDIUM
Key Information:
- Vendor
- IBM
- Vendor
- CVE Published:
- 15 September 2020
Summary
The vulnerability in IBM Tivoli Business Service Manager versions 6.2.0.0 to 6.2.0.2 IF 1 allows web pages to be stored on the local system, with the potential for unauthorized access by other users. This can lead to sensitive information exposure, creating security risks for organizations utilizing this software. Proper awareness and timely updates are essential to mitigate these concerns.
Affected Version(s)
Tivoli Business Service Manager 6.2.0.0
Tivoli Business Service Manager 6.2.0.2.IF.1
References
CVSS V3.1
Score:
4
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved