CVE-2020-4726

Name of the Vulnerable Software and Affected Versions IBM Application Performance Management (APM) version 8.1.4

Description The issue is related to a lack of protection for service data, which can allow an attacker to disclose protected information. Specifically, the IBM Application Performance Monitoring UI allows web pages to be stored locally, which can then be read by another user on the system.

Recommendations For version 8.1.4, consider restricting access to sensitive web pages stored locally to minimize the risk of unauthorized disclosure. As a temporary workaround, restrict access to the locally stored web pages until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.