CVE-2020-4893

Summary

IBM Emptoris Strategic Supply Management 10.1.0, 10.1.1, and 10.1.3 transmits sensitive information in HTTP GET request parameters. This may lead to information disclosure via man in the middle methods. IBM X-Force ID: 190984.

Affected Software

VendorProductVersion RangeStatus
IBMEmptoris Strategic Supply Management10.1.0affected
IBMEmptoris Strategic Supply Management10.1.1affected
IBMEmptoris Strategic Supply Management10.1.3affected

Weaknesses

  • Obtain Information

ADP Enrichment

CVE Program Container

Additional References

References