Vulnerabilities > IBM > Cloud APP Management

DATE CVE VULNERABILITY TITLE RISK
2020-04-24 CVE-2019-4751 Information Exposure vulnerability in IBM Cloud APP Management 2019.3.0/2019.4.0
IBM Cloud App Management 2019.3.0 and 2019.4.0 reveals a stack trace on certain API requests which can allow an attacker further information about the implementation of the offering.
network
low complexity
ibm CWE-200
5.3
2020-04-24 CVE-2019-4750 Cross-Site Request Forgery (CSRF) vulnerability in IBM Cloud APP Management 2019.3.0/2019.4.0
IBM Cloud App Management 2019.3.0 and 2019.4.0 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts.
network
low complexity
ibm CWE-352
8.8
2019-05-10 CVE-2018-1990 Information Exposure vulnerability in IBM Cloud APP Management 2018.2.0/2018.4.0/2018.4.1
IBM Cloud App Management V2018.2.0, V2018.4.0, and V2018.4.1 could allow an attacker to obtain sensitive configuration information using a specially crafted HTTP request.
network
low complexity
ibm CWE-200
5.3