Improper Input Validation in IBM Engineering Requirements Quality Assistant
CVE-2020-4667
4.3MEDIUM
Key Information:
- Vendor
- IBM
- Vendor
- CVE Published:
- 8 January 2021
Summary
IBM Engineering Requirements Quality Assistant On-Premises is vulnerable to an issue that allows an authenticated user to access sensitive information due to improper input validation. This vulnerability could be exploited by an attacker to gain unauthorized access to critical data, potentially compromising user privacy and security. For further details, refer to the official IBM documentation and vulnerability database.
Affected Version(s)
Engineering Requirements Quality Assistant On-Premises
References
CVSS V3.1
Score:
4.3
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved