Lucene search
IBMB5313C32D449ECC6241E118476952BE332E90EE0015719A7BDA1A8667BFFE606HistoryJul 26, 2019 - 5:57 p.m.
Security Bulletin: IBM StoredIQ is affected by a missing function level access control vulnerability (CVE-2019-4163)
2019-07-2617:57:42
www.ibm.com
5
0.001 Low
EPSS
Percentile
19.8%
Summary
IBM StoredIQ has addressed the following vulnerability: Missing function level access control.
Vulnerability Details
CVEID: CVE-2019-4163 DESCRIPTION: IBM StoreIQ could allow an authenticated user to obtain sensitive information that a privileged user should only be allowed to view.
CVSS Base Score: 4.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/158696> for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N)
Affected Products and Versions
Affected Products and Versions
| Affected Product | Affected Versions |
|---|---|
| IBM StoredIQ | 7.6.0.0. - 7.6.0.18 |
Remediation/Fixes
| Product | VRMF | Remediation / First Fix |
|---|---|---|
| IBM StoredIQ | 7.6.0.0 - 7.6.0.18 | After upgrading to fix pack 7.6.0.18 apply fix pack 7.6.0.19 that is available from Fix Central https://www.ibm.com/support/fixcentral/ |
Workarounds and Mitigations
None
Related
prion
prion
Design/Logic Flaw
2019-07-31 17:15:00
cvelist
cvelist
CVE-2019-4163
2019-07-26 00:00:00
nvd
nvd
CVE-2019-4163
2019-07-31 17:15:11
cve
cve
CVE-2019-4163
2019-07-31 17:15:11
0.001 Low
EPSS
Percentile
19.8%
Related for B5313C32D449ECC6241E118476952BE332E90EE0015719A7BDA1A8667BFFE606