CVE-2016-5988

EUVD-2016-6922
IBM Security Privileged Identity Manager Virtual Appliance could disclose sensitive information in generated error messages that would be available to an authenticated user.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.5 MEDIUM
NETWORK
LOW
LOW
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 48%
Affected Products (NVD)
VendorProductVersion
ibmsecurity_privileged_identity_manager
2.0.2
ibmsecurity_privileged_identity_manager
2.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.ibm.com/support/docview.wss?uid=swg21996614
http://www.securityfocus.com/bid/95198
http://www.ibm.com/support/docview.wss?uid=swg21996614
http://www.securityfocus.com/bid/95198