IBM TRIRIGA Application Platform is prone to an unspecified information-disclosure vulnerability.
An attacker can exploit this issue to gain access to sensitive information; this may lead to further attacks.
The following versions are affected.
IBM TRIRIGA Application Platform 3.5.3
IBM TRIRIGA Application Platform 3.6.0
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: vuldb@securityfocus.com.
Solution:
Updates are available. Please see the references or vendor advisory for more information.
| Bugtraq ID: | 108843 |
| Class: | Design Error |
| CVE: | CVE-2018-2008 |
| Remote: | Yes |
| Local: | No |
| Published: | May 03 2019 12:00AM |
| Updated: | Jun 21 2019 06:00AM |
| Credit: | The vendor reported this issue. |
| Vulnerable: | IBM TRIRIGA Application Platform 3.6 IBM TRIRIGA Application Platform 3.5.3 IBM TRIRIGA Application Platform 3.6.0.2 IBM TRIRIGA Application Platform 3.6.0.1 IBM TRIRIGA Application Platform 3.5.3.5 IBM TRIRIGA Application Platform 3.5.3.3 |
| Not Vulnerable: | IBM TRIRIGA Application Platform 3.6.0.3 IBM TRIRIGA Application Platform 3.5.3.6 |
References:
from SecurityFocus Vulnerabilities http://bit.ly/2ZCRWZm
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.