CVE-2020-4292

CVSS 3.7 LOWEPSS 1.0%

IBM Security Information Queue (ISIQ) 1.0.0, 1.0.1, 1.0.2, 1.0.3, and 1.0.4 uses a cross-domain policy file that includes domains that should not be trusted which could disclose sensitive information. IBM X-Force ID: 176335.

CVSS:3.0/C:L/S:U/PR:N/AV:N/UI:N/AC:H/A:N/I:N/RC:C/RL:O/E:U

Affected products

IBM · Security Information Queue

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/176335 https://www.ibm.com/support/pages/node/5390193