CVE-2019-4308

Summary

IBM Emptoris Sourcing 10.1.0 through 10.1.3, IBM Contract Management 10.1.0 through 10.1.3, and IBM Emptoris Spend Analysis 10.1.0 through 10.1.3 could allow an authenticated user to obtain sensitive information from error messages IBM X-Force ID: 161034.

Affected Software

VendorProductVersion RangeStatus
IBMEmptoris Sourcing10.1.0affected
IBMEmptoris Sourcing10.1.3affected
IBMContract Management10.1.0affected
IBMContract Management10.1.3affected
IBMEmptoris Spend Analysis10.1.0affected
IBMEmptoris Spend Analysis10.1.3affected

Weaknesses

  • Obtain Information

ADP Enrichment

CVE Program Container

Additional References

References