CVE-2020-4290

Summary

IBM Security Information Queue (ISIQ) 1.0.0, 1.0.1, 1.0.2, 1.0.3, 1.0.4, and 1.0.5 could allow any authenticated user to spoof the configuration owner of any other user which disclose sensitive information or allow for unauthorized access. IBM X-Force ID: 176333.

Affected Software

VendorProductVersion RangeStatus
IBMSecurity Information Queue1.0.0affected
IBMSecurity Information Queue1.0.1affected
IBMSecurity Information Queue1.0.2affected
IBMSecurity Information Queue1.0.3affected
IBMSecurity Information Queue1.0.4affected
IBMSecurity Information Queue1.0.5affected

Weaknesses

  • Gain Access

ADP Enrichment

CVE Program Container

Additional References

References