CVE-2019-4706
CVE-2019-4706
Vexday Risk Score
8Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 2.7EPSS 0.8%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
01 Jul 2020Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
IBM Security Identity Manager Virtual Appliance 7.0.2 writes information to log files which can be of a sensitive nature and give valuable guidance to an attacker or expose sensitive user information. IBM X-Force ID: 172016.
CVSS:3.0/AC:L/A:N/UI:N/PR:H/C:L/S:U/AV:N/I:N/RC:C/RL:O/E:U
Affected products
IBM · Security Identity Manager Virtual Appliance