5.5

CVE-2017-1784

IBM Cognos Analytics 11.0 could produce results in temporary files that contain highly sensitive information that can be read by a local user. IBM X-Force ID: 136858.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
IbmCognos Analytics Version11.0.0
IbmCognos Analytics Version11.0.1
IbmCognos Analytics Version11.0.2
IbmCognos Analytics Version11.0.3
IbmCognos Analytics Version11.0.4
IbmCognos Analytics Version11.0.5.0
IbmCognos Analytics Version11.0.6.0
IbmCognos Analytics Version11.0.7.0
NetappOncommand Insight Version-
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.38% 0.304
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
nvd@nist.gov 2.1 3.9 2.9
AV:L/AC:L/Au:N/C:P/I:N/A:N
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

https://security.netapp.com/advisory/ntap-20190329-0003/
Broken Link
https://security.netapp.com/advisory/ntap-20190401-0003/
Third Party Advisory
http://www.ibm.com/support/docview.wss?uid=swg22011561
Patch
Vendor Advisory
http://www.securitytracker.com/id/1040299
Third Party Advisory
VDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/136858
Vendor Advisory
VDB Entry