CVE-2019-4485

🗓️ 20 Aug 2019 18:25:27Reported by ibmType

IBM Emptoris Sourcing 10.1.0 through 10.1.3, IBM Contract Management 10.1.0 through 10.1.3, and IBM Emptoris Spend Analysis 10.1.0 through 10.1.3 generates an error message that includes sensitive informatio

Reporter	Title	Published	Views	Family All 7
CNVD	IBM Emptoris Spend Analysis Information Disclosure Vulnerability	21 Aug 201900:00	–	cnvd
Cvelist	CVE-2019-4485	20 Aug 201918:25	–	cvelist
EUVD	EUVD-2019-14092	7 Oct 202500:30	–	euvd
NVD	CVE-2019-4485	20 Aug 201919:15	–	nvd
OSV	CVE-2019-4485	20 Aug 201919:15	–	osv
Prion	Information disclosure	20 Aug 201919:15	–	prion
Positive Technologies	PT-2019-17105 · Ibm · Ibm Emptoris Spend Analysis +2	20 Aug 201900:00	–	ptsecurity

NVD

Vulners

Node

ibm emptoris_contract_managementRange10.1.0–10.1.3

ibm emptoris_sourcingRange10.1.0–10.1.3

ibm emptoris_spend_analysisRange10.1.0–10.1.3

[
  {
    "product": "Contract Management",
    "vendor": "IBM",
    "versions": [
      {
        "status": "affected",
        "version": "10.1.0"
      },
      {
        "status": "affected",
        "version": "10.1.3"
      }
    ]
  },
  {
    "product": "Emptoris Spend Analysis",
    "vendor": "IBM",
    "versions": [
      {
        "status": "affected",
        "version": "10.1.0"
      },
      {
        "status": "affected",
        "version": "10.1.3"
      }
    ]
  },
  {
    "product": "Emptoris Sourcing",
    "vendor": "IBM",
    "versions": [
      {
        "status": "affected",
        "version": "10.1.0"
      },
      {
        "status": "affected",
        "version": "10.1.3"
      }
    ]
  }
]

Source	Link
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/164069
ibm	www.ibm.com/support/docview.wss

21 Nov 2024 04:43Current

4.3Medium risk

Vulners AI Score4.3

CVSS 24

CVSS 3.14.3

CVSS 34.3

EPSS0.00156

CWE-209