CVE-2019-4257

EUVD-2019-13864
IBM InfoSphere Information Server 11.5 and 11.7 is affected by an information disclosure vulnerability. Sensitive information in an error message may be used to conduct further attacks against the system. IBM X-Force ID: 159945.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4.3 MEDIUM
NETWORK
LOW
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
ibmCNA
4.3 MEDIUM
NETWORK
LOW
LOW
CVSS:3.0/I:N/C:L/UI:N/A:N/S:U/PR:L/AC:L/AV:N/RC:C/E:U/RL:O
Base Score
CVSS 3.x
EPSS Score
Percentile: 36%
Affected Products (NVD)
VendorProductVersion
ibminfosphere_information_analyzer
11.5
ibminfosphere_information_analyzer
11.7
ibminfosphere_information_governance_catalog
11.5
ibminfosphere_information_governance_catalog
11.7
ibminfosphere_information_server_on_cloud
11.5
ibminfosphere_information_server_on_cloud
11.7
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://exchange.xforce.ibmcloud.com/vulnerabilities/159945
https://www.ibm.com/support/docview.wss?uid=ibm10882478
https://exchange.xforce.ibmcloud.com/vulnerabilities/159945
https://www.ibm.com/support/docview.wss?uid=ibm10882478