Vulnerabilities > CVE-2019-4395 - Unspecified vulnerability in IBM Cloud Orchestrator

CVSS 2.1 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

local

low complexity

ibm

NVD

Published: 2019-10-25

Updated: 2020-08-24

Summary

IBM Cloud Orchestrator 2.4 through 2.4.0.5 and 2.5 through 2.5.0.9 could allow a local user to obtain sensitive information from temporary script files. IBM X-Force ID: 162333.

Vulnerable Configurations

Part	Description	Count
Application	Ibm IBM Cloud Orchestrator 2.4.0.0 IBM Cloud Orchestrator 2.4.0.1 IBM Cloud Orchestrator 2.4.0.2 IBM Cloud Orchestrator 2.4.0.3 IBM Cloud Orchestrator 2.4.0.4 IBM Cloud Orchestrator 2.4.0.5 IBM Cloud Orchestrator 2.5.0.0 IBM Cloud Orchestrator 2.5.0.1 IBM Cloud Orchestrator 2.5.0.2 IBM Cloud Orchestrator 2.5.0.3 IBM Cloud Orchestrator 2.5.0.4 IBM Cloud Orchestrator 2.5.0.5 IBM Cloud Orchestrator 2.5.0.6 IBM Cloud Orchestrator 2.5.0.7 IBM Cloud Orchestrator 2.5.0.8 IBM Cloud Orchestrator 2.5.0.9	32

Summary

Vulnerable Configurations

References