Lucene search

IbmCVELIST:CVE-2019-4703

HistoryFeb 21, 2020 - 12:00 a.m.

CVE-2019-4703

2020-02-2100:00:00

ibm

www.cve.org

5.3 Medium

CVSS3

Attack Vector

ADJACENT

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C

5.4 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

20.0%

JSON

IBM Spectrum Protect Plus 10.1.0 and 10.5.0, when protecting Microsoft SQL or Microsoft Exchange, could allow an attacker with intimate knowledge of the system to obtain highly sensitive information.

CNA Affected

[
  {
    "product": "Spectrum Protect Plus",
    "vendor": "IBM",
    "versions": [
      {
        "status": "affected",
        "version": "10.1.0"
      },
      {
        "status": "affected",
        "version": "10.1.5"
      }
    ]
  }
]

References

exchange.xforce.ibmcloud.com/vulnerabilities/172013

www.ibm.com/support/pages/node/3177915

5.3 Medium

CVSS3

Attack Vector

ADJACENT

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C

5.4 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

20.0%

JSON

Related for CVELIST:CVE-2019-4703