Lucene search
IbmCVE-2021-38859HistoryOct 17, 2023 - 2:15 a.m.
CVE-2021-38859
2023-10-1702:15:10
CWE-200
ibm
web.nvd.nist.gov
37
ibm
security
verify privilege
on-premises
11.5
vulnerability
cve-2021-38859
nvd
ibm x-force
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
AI Score
4.8
Confidence
High
EPSS
0
Percentile
13.1%
IBM Security Verify Privilege On-Premises 11.5 could allow a user to obtain version number information using a specially crafted HTTP request that could be used in further attacks against the system. IBM X-Force ID: 207899.
Affected configurations
Node
applemacosMatch-
ORmicrosoftwindowsMatch-
ibmsecurity_verify_privilege_on-premisesRange<11.5
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Security Verify Privilege",
"vendor": "IBM",
"versions": [
{
"status": "affected",
"version": "11.5"
}
]
}
]Related
prion
prion
Design/Logic Flaw
2023-10-17 02:15:00
vulnrichment
vulnrichment
CVE-2021-38859 IBM Security Verify Privilege information disclosure
2023-10-17 01:15:31
nvd
nvd
CVE-2021-38859
2023-10-17 02:15:10
cvelist
cvelist
CVE-2021-38859 IBM Security Verify Privilege information disclosure
2023-10-17 01:15:31
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
AI Score
4.8
Confidence
High
EPSS
0
Percentile
13.1%
Related for CVE-2021-38859