PT-2019-16935 · Ibm · Ibm Api Connect'S Developer Portal

Publicado

2019-04-08

Atualizado

2020-08-24

CVE-2019-4155

CVSS v3.1

9.8

Crítica

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions IBM API Connect's Developer Portal versions 2018.1 through 2018.4.1.3

Description The issue is related to a privilege escalation vulnerability that occurs when IBM API Connect's Developer Portal is integrated with an OpenID Connect (OIDC) user registry.

Recommendations For versions 2018.1 through 2018.4.1.3, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2019-4155

Produtos afetados

Ibm Api Connect'S Developer Portal

PT-2019-16935 · Ibm · Ibm Api Connect'S Developer Portal

CVE-2019-4155

Identificadores relacionados

Produtos afetados

Referências · 5