CVE-2018-2008

Published: May 7, 2019Modified: Nov 21, 2024

4.3

Vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Exploitability: 2.8 / Impact: 1.4

Source: NVD

Description

IBM TRIRIGA Application Platform 3.5.3 and 3.6.0 could disclose sensitive information to an authenticated user that could aid in further attacks against the system. IBM X-Force ID: 155146.

Affected (2)

Products: Ibm: Tririga Application Platform

Ibm

1 product

Tririga Application Platform

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Ibm Tririga Application Platform	From 3.5.3.0 to 3.5.3.6
Ibm Tririga Application Platform	From 3.6.0.0 to 3.6.0.3

Related CWEs

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (6)

http://www.ibm.com/support/docview.wss?uid=ibm10879463

Source: psirt@us.ibm.com

PatchVendor Advisory

http://www.securityfocus.com/bid/108843

Source: psirt@us.ibm.com

https://exchange.xforce.ibmcloud.com/vulnerabilities/155146

Source: psirt@us.ibm.com

VDB EntryVendor Advisory

http://www.ibm.com/support/docview.wss?uid=ibm10879463

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.securityfocus.com/bid/108843

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/155146

Source: af854a3a-2127-422b-91ae-364da2661108

VDB EntryVendor Advisory

Timeline

No history available yet.