Lucene search
IbmCVELIST:CVE-2020-4224HistoryFeb 03, 2020 - 4:45 p.m.
CVE-2020-4224
2020-02-0316:45:18
ibm
www.cve.org
1
CVSS3
2.9
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C
AI Score
5
Confidence
High
EPSS
0
Percentile
5.1%
IBM StoredIQ 7.6.0.17 through 7.6.0.20 could disclose sensitive information to a local user due to data in certain directories not being encrypted when it contained symbolic links. IBM X-Force ID: 175133.
CNA Affected
[
{
"product": "StoredIQ",
"vendor": "IBM",
"versions": [
{
"status": "affected",
"version": "7.6.0.17"
},
{
"status": "affected",
"version": "7.6.0.20"
}
]
}
]Related
nvd
nvd
CVE-2020-4224
2020-02-03 17:15:15
cve
cve
CVE-2020-4224
2020-02-03 17:15:15
ibm
ibm
Security Bulletin: Information Disclosure in IBM StoredIQ (CVE-2020-4224)
2020-01-31 16:44:14
prion
prion
Information disclosure
2020-02-03 17:15:00
CVSS3
2.9
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C
AI Score
5
Confidence
High
EPSS
0
Percentile
5.1%
Related for CVELIST:CVE-2020-4224