3 matches found
CVE-2019-4397
creationtimestamp| type| source ---|---|--- 2024-01-27 10:41:42+00:00| seen| https://t.me/ctinow/174733...
CVE-2019-4397
IBM Cloud Orchestrator and IBM Cloud Orchestrator Enterprise are affected by CVE-2019-4397. Version ranges include 2.5 through 2.5.0.9 and 2.4 through 2.4.0.5. The root cause is storing sensitive information in URL parameters, which can disclose data if URLs are exposed via server logs, the refer...
Security Bulletin: A security vulnerability affects IBM Cloud Orchestrator and IBM Cloud Orchestrator Enterprise Edition (CVE-2019-4397)
Summary IBM Cloud Orchestrator and IBM Cloud Orchestrator Enterprise has identified and addressed the vulnerability because of unencrypted sensitive data. Vulnerability Details CVEID: CVE-2019-4397 DESCRIPTION: IBM Cloud Orchestrator stores sensitive information in URL parameters. This may lead t...