CVE-2019-4381
5.9
CVSS:3.0/AV:L/I:N/AC:H/UI:N/C:H/PR:N/A:N/S:C/RL:O/RC:C/E:U
Summary
IBM i 7.27.3 Clustering could allow a local attacker to obtain sensitive information, caused by the use of advanced node failure detection using the REST API to interface with the HMC. An attacker could exploit this vulnerability to obtain HMC credentials. IBM X-Force ID: 162159.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| IBM | i | 7.27.3 | affected |
Weaknesses
- Obtain Information
ADP Enrichment
CVE Program Container
Additional References
- https://www.ibm.com/support/docview.wss?uid=ibm10887369
- https://exchange.xforce.ibmcloud.com/vulnerabilities/162159
- http://www.securityfocus.com/bid/108808
References
- https://www.ibm.com/support/docview.wss?uid=ibm10887369
- https://exchange.xforce.ibmcloud.com/vulnerabilities/162159
- http://www.securityfocus.com/bid/108808
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.