Lucene search
K

4 matches found

Circl
Circl
added 2022/07/14 8:32 p.m.7 views

CVE-2021-39019

creationtimestamp| type| source ---|---|--- 2022-07-14 20:32:47+00:00| seen| https://t.me/cibsecurity/46261...

6.5CVSS6.2AI score0.00705EPSS
Exploits0References1
OSV
OSV
added 2022/07/14 5:15 p.m.3 views

CVE-2021-39019

IBM Engineering Lifecycle Optimization - Publishing 6.0.6, 6.0.6.1, 7.0, 7.0.1, and 7.0.2 could disclose highly sensitive information through an HTTP GET request to an authenticated user. IBM X-Force ID: 213728...

6.5CVSS5.5AI score0.00705EPSS
Exploits0References2
CVE
CVE
added 2022/07/14 4:15 p.m.49 views

CVE-2021-39019

CVE-2021-39019 affects IBM Engineering Lifecycle Optimization – Publishing components (versions 6.0.6, 6.0.6.1, 7.0, 7.0.1, 7.0.2). The root cause is information disclosure via HTTP GET to an authenticated user, disclosing highly sensitive information. Connected sources confirm an HTTP GET-based ...

6.5CVSS6AI score0.00705EPSS
Exploits0References2Affected Software2
IBM Security Bulletins
IBM Security Bulletins
added 2022/07/13 9:4 a.m.27 views

Security Bulletin: IBM Engineering Lifecycle Optimization - Publishing is vulnerable to disclose highly sensitive information (CVE-2021-39019)

Summary IBM Engineering Lifecycle Optimization - Publishing Document Builder uses the POST method to submit passwords but can be forced to use the GET method also. Highly sensitive information can be disclosed through an HTTP GET request to an authenticated userCVE-2021-39019 Vulnerability Detail...

6.5CVSS0.1AI score0.00705EPSS
Exploits0Affected Software1
Rows per page
Query Builder