PT-2018-14934 · Ibm · Ibm Connections

Published

2018-12-06

Updated

2019-10-09

CVE-2018-1935

CVSS v3.1

4.3

Medium

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions IBM Connections versions 5.0 through 6.0

Description The issue allows an authenticated user to obtain sensitive information from invalid request error messages.

Recommendations For versions 5.0 through 6.0, update to a version that includes a fix for this issue to prevent sensitive information disclosure.

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

CVE-2018-1935

Ibm Connections