Lucene search
IbmCVELIST:CVE-2020-4338HistoryApr 16, 2020 - 3:35 p.m.
CVE-2020-4338
2020-04-1615:35:21
ibm
www.cve.org
3
CVSS3
5.1
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C
AI Score
6.7
Confidence
Low
EPSS
0
Percentile
5.1%
IBM MQ 9.1.4 could allow a local attacker to obtain sensitive information by inclusion of sensitive data within runmqras data. IBM X-Force ID: 177937.
CNA Affected
[
{
"product": "MQ",
"vendor": "IBM",
"versions": [
{
"status": "affected",
"version": "9.1.4"
}
]
}
]Related
prion
prion
Information disclosure
2020-04-16 16:15:00
nvd
nvd
CVE-2020-4338
2020-04-16 16:15:13
cve
cve
CVE-2020-4338
2020-04-16 16:15:13
ibm
ibm
Security Bulletin: IBM MQ Appliance could allow a local attacker to obtain sensitive information. (CVE-2020-4338)
2020-04-22 09:22:50
Security Bulletin: IBM MQ and IBM MQ Appliance could allow a local attacker to obtain sensitive information. (CVE-2020-4338)
2020-04-15 10:20:03
Security Bulletin: Multiple IBM MQ Vulnerabilities Affect IBM Control Center
2021-05-14 21:31:03
CVSS3
5.1
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C
AI Score
6.7
Confidence
Low
EPSS
0
Percentile
5.1%
Related for CVELIST:CVE-2020-4338