CVE-2019-4633

CVSS 3.1 LOWEPSS 0.9%

IBM Security Secret Server 10.7 could allow an attacker to obtain sensitive information due to an overly permissive CORS policy. IBM X-Force ID: 170007.

CVSS:3.0/A:N/S:U/UI:R/PR:N/AV:N/C:L/AC:H/I:N/RC:C/E:U/RL:O

Affected products

IBM · Security Secret Server

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/170007 https://www.ibm.com/support/pages/node/1283200