CVE-2018-2008

Description

IBM TRIRIGA Application Platform 3.5.3 and 3.6.0 could disclose sensitive information to an authenticated user that could aid in further attacks against the system. IBM X-Force ID: 155146.

CVSS breakdown

CVSS 3.0

Attack Complexity

Low

Availability

None

User Interaction

None

Scope

Unchanged

Privileges Required

Low

Confidentiality

Low

Attack Vector

Network

Integrity

None

Changed

Unchanged

Affected products

ibm / tririga_application_platform3.5.3 – 3.5.3
ibm / tririga_application_platform3.6.0 – 3.6.0

References

MISChttp://www.ibm.com/support/docview.wss?uid=ibm10879463
MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/155146
MISChttp://www.securityfocus.com/bid/108843