IBM Business Automation Workflow 18.0.0.0, 18.0.0.1, and 18.0.0.2 could reveal sensitive version information about the server from error pages that could aid an attacker in further attacks against the system. IBM X-Force ID: 154889.
References
Link | Resource |
---|---|
https://exchange.xforce.ibmcloud.com/vulnerabilities/154889 | Vendor Advisory VDB Entry |
https://www.ibm.com/support/docview.wss?uid=ibm10870502 | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
No history.
Information
Published : 2019-04-08 15:29
Updated : 2024-02-04 20:20
NVD link : CVE-2018-1999
Mitre link : CVE-2018-1999
CVE.ORG link : CVE-2018-1999
JSON object : View
Products Affected
ibm
- business_automation_workflow
- business_process_manager
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor