CVE-2019-4062

🗓️ 30 Jul 2019 13:25:14Reported by ibmType

IBM i2 Intelligent Analyis Platform 9.0.0 through 9.1.1 XML External Entity Injection vulnerabilit

Reporter	Title	Published	Views	Family All 6
CVE	CVE-2019-4062	30 Jul 201913:25	–	cve
IBM Security Bulletins	Security Bulletin: IBM i2 Intelligent Analyis Platform is affected by a XML External Entity (XXE) vulnerability	31 May 201911:40	–	ibm
EUVD	EUVD-2019-13669	7 Oct 202500:30	–	euvd
NVD	CVE-2019-4062	30 Jul 201914:15	–	nvd
Prion	Xxe	30 Jul 201914:15	–	prion
Positive Technologies	PT-2019-16873 · Ibm · Ibm I2 Intelligent Analyis Platform	30 Jul 201900:00	–	ptsecurity

[
  {
    "product": "i2 Analyst's Notebook",
    "vendor": "IBM",
    "versions": [
      {
        "status": "affected",
        "version": "9.0.0"
      },
      {
        "status": "affected",
        "version": "9.0.1"
      },
      {
        "status": "affected",
        "version": "9.0.2"
      },
      {
        "status": "affected",
        "version": "9.0.3"
      },
      {
        "status": "affected",
        "version": "9.0.4"
      },
      {
        "status": "affected",
        "version": "9.0.5"
      },
      {
        "status": "affected",
        "version": "9.0.6"
      },
      {
        "status": "affected",
        "version": "9.0.7"
      },
      {
        "status": "affected",
        "version": "9.1.0"
      },
      {
        "status": "affected",
        "version": "9.1.1"
      }
    ]
  }
]

Source	Link
ibm	www.ibm.com/support/docview.wss
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/157007

30 Jul 2019 13:25Current

6.8Medium risk

Vulners AI Score6.8

CVSS 37.1

EPSS0.00377