← volver
CVE-2021-38894

CVE-2021-38894

CVSS 2.7 LOWEPSS 0.9%
Vexday Risk Score
8Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 2.7EPSS 0.9%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
07 ene 2022Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
IBM Security Verify 10.0.0, 10.0.1.0, and 10.0.2.0 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 209515.
CVSS:3.0/S:U/UI:N/AV:N/PR:H/AC:L/I:N/C:L/A:N/RL:O/RC:C/E:U