IBM Business Process Manager 8.6 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 135856.
No CVSS v3.1
Attack Vector Local
Attack Complexity Low
Privileges Required Low
Scope Unchanged
Confidentiality Impact Low
Integrity Impact None
Availability Impact None
User Interaction None
Access Vector Local
Access Complexity Low
Authentication None
Confidentiality Impact Partial
Integrity Impact None
Availability Impact None
AV:L/AC:L/Au:N/C:P/I:N/A:N
Vendors | Products |
---|---|
Ibm |
|
Configuration 1 [-]
|
Configuration 2 [-]
|
Configuration 3 [-]
|
Configuration 4 [-]
|
Configuration 5 [-]
|
References
Link | Resource |
---|---|
http://www.ibm.com/support/docview.wss?uid=swg22010796 | Patch Vendor Advisory |
http://www.securityfocus.com/bid/103589 | Third Party Advisory VDB Entry |
https://exchange.xforce.ibmcloud.com/vulnerabilities/135856 | VDB Entry Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: ibm
Published: 2018-03-23T00:00:00
Updated: 2018-04-04T09:57:01
Reserved: 2016-11-30T00:00:00
Link: CVE-2017-1756
JSON object: View
NVD Information
Status : Modified
Published: 2018-03-30T16:29:00.247
Modified: 2019-10-09T23:26:29.037
Link: CVE-2017-1756
JSON object: View
Redhat Information
No data.
CWE