Vulnerabilities > IBM > Cloud PAK FOR Applications

DATE CVE VULNERABILITY TITLE RISK
2021-07-13 CVE-2021-20423 Incorrect Permission Assignment for Critical Resource vulnerability in IBM Cloud PAK for Applications
IBM Cloud Pak for Applications 4.3 could allow an authenticated user gain escalated privilesges due to improper application permissions.
network
low complexity
ibm CWE-732
8.8
2021-07-13 CVE-2021-20424 Information Exposure Through an Error Message vulnerability in IBM Cloud PAK for Applications
IBM Cloud Pak for Applications 4.3 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser.
network
low complexity
ibm CWE-209
4.3