Vulnerabilities > CVE-2017-1441 - Unspecified vulnerability in IBM Emptoris Services Procurement

CVSS 5.5 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

local

low complexity

ibm

NVD

Published: 2017-08-30

Updated: 2019-10-03

Summary

IBM Emptoris Services Procurement 10.0.0.5 could allow a local user to view sensitive information stored locally due to improper access control. IBM X-Force ID: 128106.

Vulnerable Configurations

Part	Description	Count
Application	Ibm IBM Emptoris Services Procurement 10.0.0.4 IBM Emptoris Services Procurement 10.0.0.5 IBM Emptoris Services Procurement 10.0.0.1 IBM Emptoris Services Procurement 10.0.0.2 IBM Emptoris Services Procurement 10.0.0.0 IBM Emptoris Services Procurement 10.0.0.3 IBM Emptoris Services Procurement 10.1.1.0	7

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/128106
http://www-01.ibm.com/support/docview.wss?uid=swg22005550
http://www.securityfocus.com/bid/99547